Midterm exam

Question 1

Typically, a network service is a running daemon (e.g., a thread/process). Such a daemon listens for network traffic on a particular _______, which is associated with the service.

Answer 1

Port number

Question 2

The TCP/IP address of 127.0.0.1 is commonly referred to as the __________.

Answer 2

loopback address

Question 3

Which of the following devices forwards data (IP) packets from an internal subnet to an external router?

Answer 3

Gateway

Question 4

Which of the following commands can be used to modify the route table on a Linux computer?

Answer 4

IP
route

Question 5

The line that configures the hostname for a Fedora Linux machine at boot time can be found in which of the following files?

Answer 5

/etc/hostname

Question 6

Which of the following can be used to resolve a hostname to the IP address? (Choose all that apply.)

Answer 6

DNS service
/etc/hosts

Question 7

Which file holds the methods to be used and the order in which they will be applied for host name resolution?

Answer 7

/etc/nsswitch.conf

Question 8

Which of the following commands can be used to send data to a specific port on a server from a client.

Answer 8

netcat

Question 9

Which of the following utilities can be used to download data/file from a web link?

Answer 9

wget
curl

Question 10

Which of the following directories stores the connection profiles for NetworkManager?

Answer 10

/etc/NetworkManager/system-connections/

Question 11

Which of the following can be used to change the hostname of a linux server

Answer 11

nmcli
hostnamectl

Question 12

Which of the following can be used to store the DNS server’s IP address?

Answer 12

/etc/resolv.conf

Question 13

Assume that each lab has 31 hosts. If each lab needs to have its own subnet, what is the minimum number of bits required for the subnet mask?

Answer 13

26

Question 14

Suppose you have 360 hosts and want to have no more than 60 hosts per subnet. How many class C addresses would you need? How many subnets would you have left over from your allocation?

Answer 14

2,2

Question 15

Which of the following can be a function of the DHCP service?

Answer 15

Provide the DNS server address to a DHCP client

Provide the gateway address to a DHCP client

Question 16

Which of the following are optional in the DHCP lease process?

Answer 16

DHCPDISCOVER
DHCPOFFER

Question 17

DHCP stands for Dynamic host configuration protocol as a result it only assigns dynamic IP address to clients but not static IP addresses

Answer 17

false

Question 18

A DHCP starvation attack is type of attack where a malicious client exhausts the IP addresses in the DHCP scope preventing legitimate clients from obtaining an ip address, how can it be prevented.

Answer 18

I can be prevented by using MAC address filtering

Question 19

Which of the following is the type of resource record that represents a DNS server

Answer 19

ns

Question 20

It is required to have a reverse DNS zone for a forward DNS zone because forward resolving record needs a match reverse resolving record for security purposes

Answer 20

false

Question 21

Which port number is used by DNS servers to listen for request?

Answer 21

53

Question 22

Which of the following is the type of resource record for mail exchange server?

Answer 22

MX

Question 23

Which of the following marks the authoritative nature of a DNS server?

Answer 23

SOA

Question 24

Which of the following LInux commands can be used to find the IP address of a domain name such as example.com

Answer 24

nslookup
hostname

Question 25

An authoritative DNS server should not perform iterative query because it may incur too much traffic.

Answer 25

False

Question 26

All DNS records end with the period character(.) which represents _____

Answer 26

the root of the DNS hierarchy

Question 27

Assume that TCU's authoritative DNS server is ns01.tcu.edu. The CS department of TCU is allowed to manage its DNS sub-domain (cs.tcu.edu) with its name sever as ns101.cs.tcu.edu. The CS name server's zone files do contain SOA records. Thus, ns101.cs.tcu.edu is an authoritative DNS server for cs.tcu.edu even if it is local to the CS department.

Answer 27

True

Question 28

How does a secondary DNS server get zone records from the primary DNS server?

Answer 28

A zone transfer

Question 29

You have added new resource records to a zone file and restarted the name service on a primary DNS server. However, the secondary DNS server did not sync its zone file after the refresh time. What may have happened( assuming that the network communications is fine between the two servers)

Answer 29

You did not increase the serial number

Question 30

The default port for the SSH service is

Answer 30

22

Question 31

In SSH, which of the following authentication methods are accepted?

Answer 31

Public Key Password

Question 32

Which of the following is the configuration file for SSH server on a Linux Machine

Answer 32

/etc/ssh/sshd_config

Question 33

Where is a user's SSH private key file located on Fedora by default

Answer 33

$HOME/.ssh

Question 34

Which of the following commands can generate a key pair for SSH user/client

Answer 34

ssh-keygen

Question 35

Where is a Linux host's SSH private key file located on Fedora by default?

Answer 35

/etc/ssh/

Question 36

Which of the following options specifies the private key file that will be used by a client to log onto a SSH server?

Answer 36

-i

Question 37

Assume you want to connect to linkedin.com however, you cannot connect to linkedin directly from your current computer. Assume that you have access to a SSH server whose DNS name is cite.aws.com which has no restrictions on accessing linkedin which of the following command would you issue from your current computer?

Answer 37

ssh -L 8443:www.linkedin.com:443 username@cite.aws.com

Question 38

Given the following ssh command: ssh -L 8043:www.facebook.com:443 john@10.10.10.10 Assume you want to connect to facebook.com using nc command from the computer that issued the above ssh command. How would you issue the nc command utilizing the established SSH tunnel?

Answer 38

nc localhost 8043

Question 39

Below is a ssh command on a computer named A: ssh –R 8181:google.com:443 admin@student.aws.com What users (not on computer A) need to enter in the address bar of a browser to use the tunnel to visit Google?

Answer 39

student.aws.com:8181

Question 40

scp is a program for copying files between computers. It uses the SSH protocol. In scp, which character represents the remote side (i.e., the SSH server side).

Answer 40

:

Question 41

To setup host based authentication, one of the host keys of the SSH server needs to be copied to the clients and placed in the right folder

Answer 41

False

Question 42

What flag do you add to see the actions SSH takes

Answer 42

-v

Question 43

Once an SSH key pair has been created, which command can be used to install it as an authorized key on the SSH server

Answer 43

ssh-copy-id

Question 44

Which file contains host keys of SSH servers accessed by a user?

Answer 44

~/.ssh/known_hosts