IS3440 CHAP 8 NETWORKED FILESYSTEMS AND REMOTE ACCESS

Question 1

___ is a distributed network filesystem, sometimes associated with Kerberos tokens.

Answer 1

(AFS) Andrew Filesystem

Question 2

___ is a protocol that guarantees integrity and data-origin authentication of network packets.

Answer 2

(AH) Authentication Header

Question 3

___ is a backup fo a PDC on a Microsoft Window NT domain; Linux with Samba can be configured as a BDC.

Answer 3

(BDC) Backup Domain Controller

Question 4

___ is an encryption protocol that normally provides authenticity, integrity, and confidentiality protection of network packets.

Answer 4

(ESP) Encapsulating Security Payload protocol

Question 5

___ is an application programming interface that accommodates communication primarily between Kerberos and services such as NFS.

Answer 5

(GSSAPI) Generic security services application program interface

Question 6

___ is a protocol for key exchange used to set up a security association between different systems.

Answer 6

(IKE) Internet Key Exchange

Question 7

___is an application layer email protocol that supports client access to remote servers.

Answer 7

(IMAP4) Internet Message Access Protocol v4

Question 8

___ is a computer network authentication protocol. Developed at MIT as part of project Athena, it allows clients to prove their identities to each other with secure tickets.

Answer 8

Kerberos

Question 9

___ is an identity associated with Kerberos tickets. it includes the user, the Kerberos administrator, and the realm.

Answer 9

Kerberos principal

Question 10

___ is typically, the name of the domain for the LAN or enterprise network, in upper-case letters.

Answer 10

Kerberos realm

Question 11

___ is the “proof” on one system that verifies the identity of a second system.

Answer 11

Kerberos ticket

Question 12

___ is a system assigned to maintain a database of NetBIOS names and their services such as domain or workgroup membership.

Answer 12

Master browser

Question 13

___ is a name for a computer system, commonly assigned on Microsoft-style networks; associated with the session layer of the OSE model.

Answer 13

(NetBIOS) Network Address Translation traversal protocol

Question 14

___ is an account with standard end-user operating system permissions. This type of user does not have administrative permissions that would be found with a superuser, root . , or administrative account.

Answer 14

Nonprivileged user

Question 15

___ is an application layer email protocol that supports email client downloads of incoming messages.

Answer 15

(POP3) Post Office Protocol v3

Question 16

___ is a master server on a Microsoft Windows NT domain that controls and can grant access to a number of computer resources based on the usernames and passwords in its database. Linux with Samba can be configured as this.

Answer 16

(PDC) Primary Domain Controller

Question 17

___ is an application-layer email protocol primarily used for outgoing messages from clients.

Answer 17

(SMTP) Simple Mail Transfer Protocol

Question 18

___ is a server that includes a database of NetBIOS names and Internet Protocol (IP) addresses.

Answer 18

(WINS) Windows Internet Name Service

Question 19

___ is one name for a protocol associated with the X Window system.

Answer 19

X11

Question 20

1. Which of the following services are required with Kerberos?
2. Telnet
3. NFS
4. NTP
5. Samba

Answer 20

NTP

Question 21

2. Which of the following files would you expect to contain Kerberos keys?
3. krb5.keys
4. users.krb
5. michael.key
6. user.keytab

Answer 21

user.keytab

Question 22

3. The protocol that allows Kerberos to work with different file-sharing services is ___.

Answer 22

GSSAPI (generic security services application program interface)

Question 23

4. The vsFTP directory directive changes the default directory for anonymous access.
   TRUE OR FALSE.

Answer 23

FALSE

Question 24

5. Which of the following Samba directives sets the name for the local server?
6. hostname
7. netbios name
8. server_name
9. domain name

Answer 24

netbios name

Question 25

6. If you want to set up a PDC, what should be the value of the security directive?
7. user
8. domain
9. server
10. ads

Answer 25

user

Question 26

7. Which of the following bits of information is contained in a WINS server?
8. Usernames
9. Permissions
10. NetBIOS names
11. Hostnames

Answer 26

NetBIOS names

Question 27

8. Name the full path to the directory with SSH keys for user
   donna

Answer 27

./home/donna/.ssh/

acceptable; /home/donna/ .ssh

Question 28

9. Which of the following directives specify that SSH listens on a network card with a network address of 192.168.0.0?
10. ListenAddress 192.168.0.1
11. ListenAddress 192.168.0.0/24
12. ListenAddress 192.168.0.0/255.255.255.0
13. ListenAddress 192.268.0.255

Answer 28

ListenAddress 192.168.0.1

Question 29

10. In what file on a remote system would you copy an SSH public key?
11. .ssh/authorized_keys
12. .ssh/id_rsa.pub
13. .ssh/id_dsa.pub
14. .ssg/id_authorized.pub

Answer 29

.ssh/authorized_keys

Question 30

11. TCP/IP port 443 is associated with IPSec connections.

TRUE OR FALSE

Answer 30

FALSE

Question 31

12. Which of the following directories may contain configuration files for IPSec connections? (Select two)
13. /etc/sysconfig/networ-scripts/
14. /etc/ipsec/
15. /etc/network/
16. /etc/racoon/

Answer 31

/etc/sysconfig/networ-scripts/

/etc/racoon/

Question 32

13. Which of the following services or protocols can be used to add security to Telnet?
14. SSL
15. STP
16. SSH
17. PAP

Answer 32

SSL

Question 33

14. Which of the following authentication systems is not normally with RADIUS?
15. CHAP
16. PAP
17. PPP
18. EAP

Answer 33

PPP

Question 34

15. Which of the following ports is a secure alternative for SMTP?
16. 52
17. 110
18. 993
19. 465

Answer 34

465