practice more

Question 1

What file do you view in order too see the default encryption method?

Answer 1

/etc/login.defs

Question 2

What file contains all the default settings for the network services?

Answer 2

/etc/xinetd.conf

Question 3

How do I check a specific network services setting?

Answer 3

/etc/xinetd.d/telnet

Question 4

How do I check all the rpc ports?

Answer 4

/etc/rpc

Question 5

How do I check all the services that the ports are mapped too?

Answer 5

/etc/services

Question 6

What are the steps too send another file on the network using nfs?

Answer 6

ensure nfs is running on both machines
create the /etc/exports file and then add the file you wanna share
/myfile 192.168.9.80(rw)

exportfs -a to share it
on the client showmount -e 192.168.0.82 to check if it’s linked
create the directory to store the share file in
mount 192.168.0.80:/myfile /home

Question 7

How do I view log messages? What are the fields of it?

Answer 7

/etc/rsyslog.conf

Selctor action

facility.level who it going too

Question 8

What are the fields of the local name resolution file?

Answer 8

/etc/hosts

IFA
IP FQDN Aliaas

Question 9

_______ is the most widely used DNS software on the internet for domain resolution. It implements the __________ service, a DNS server to provide name resolution services or act as a n authority for a domain or a sub domain

Answer 9

BIND

named

Question 10

What file provides a map of IP addresses to hostnames and aliases? What are its fields

Answer 10

/etc/hosts
IFA

Question 11

What file specifies machines for name resolution?
and what are its fields?

Answer 11

/etc/resolv.conf

Keyword > Value > description KVD

Question 12

What file controls how hostnames are resolved system wide?

Answer 12

/etc/nsswitch.conf

Question 13

what is the main configuration file for BIND?

Answer 13

/etc/named.conf

Question 14

What is the main configuration file for SSH? How do I prevent root login on ssh?

Answer 14

etc/ssh/sshd_config

Question 15

how do I ssh to 192.168.0.80 and execute ls?
How do I ssh to the same address and securely copy a directory?

Answer 15

ssh stduent@192.168.0.80 ls -l

scp -r student@192.168.0.80 /mydir

Question 16

What command is simliar to scp but must be acknowledged every step of the way?

How do cd in this mode?

Hoiw do I provide an ls of the local directory?

How dio I provide a remote directory listing?

Answer 16

sftp

cd

lls

ls

Question 17

_______ is a suite of software developed to provide file and print sharing between different OSs

Answer 17

Samba

Question 18

What does smbd provide for samba?

What does nmbd provide for samba?

Answer 18

file sharing
network printing
authentication and authorization

name resolution
service announcement

Question 19

What are the three-security modes of samba?

______, it is the most common setting for a standalone file server or a domain controller. A client must logon with a valid username/password

________, Samba tries to validate the username/password by passing it to a windows domain controller

________ Samba acts as a domain member in an ADS realm. In this mode, the machine running Samba must have Kerberos installed and configured, and Samba must be joined to the ADS realm as an AD member

Answer 19

User

Domain

Active DIrectory

Question 20

What command changes the security context of a file?

Answer 20

chcon -R

Question 21

Where is the configuration file for Apache located?

Answer 21

/etc/hhtpd/conf/httpd.conf

Question 22

What are the three directive groups of apache?

_____________________ conatins directives that control tyhe global operation of the Apache server process

_______________ contains directives that define the parameters of the main server, which responds to requests not handled by a virtual host

________________ contain settings for virtual host, if one exists.

Answer 22

Global enviroment

Main Server

Virtual Hosts

Question 23

Where is the location for the apache configuration file?

How do I check it to ensure its working correctly? What command is it?

Answer 23

/etc/httpd/conf/httpd.conf

apachectl -l

Question 24

what directive __________ works with the ServerSignature directive. By default the server sends an HTTP response header with server information to the requesting source

What does this tell you? What are the three settings you can change it too if server signature is turned on?

How do I turn off server signature to prevent apache displaying any information?

Answer 24

ServerTokens

How much information the server banner gives someone accessing apache

to reveal the full OS/version information (Full/OS)
to reveal only that it’s an apache service Prod(Product only)
to revael nothing

ServerTokens Full/OS
ServerTokens Prod

vi /etc/httpd/conf/httpd.conf
/ ServerSignature

ServerSignature = “off”

Question 25

what directive defines the top of the directory tree where the server’s configuration, error , and log files are stored.

Answer 25

ServerRoot

Question 26

What directive instructs the server to accept incoming requests on the specified port or IP-addresses-and-port combination

What does this directive tell you?

Answer 26

Listen

This tells me what port Apache is listening on

Question 27

What directive sets the User and Group under which the server answers requests.

Answer 27

User/Group

Question 28

What directive identified the email account of where to send server problems?

Answer 28

ServerAdmin

Question 29

What directive provides the name and port the server usess to identify itself?

Answer 29

ServerName

Question 30

What directive is the default directory that contains all web page documents?

Answer 30

DocumentRoot

Question 31

How do I make it so apache denys access from 192.168.0.81

Answer 31

vi /etc/httpd/conf/httpd.conf
/ Order
deny from 192.168.0.81
wq!

Question 32

How do I find the server apache is listening in on?

Answer 32

vi /etc/httpd/conf/httpd.conf

/ Listen

Question 33

What Apache log displays a line of text for every access attempt?

What apache log displays errors?

How do I access them?

Answer 33

/etc/httpd/logs/access_log

/etc/httpd/logs/error_log

Question 34

How do i see the kernel parameters?

How do I see the user process limitations file?

How do I see the encyption method used for encrypting passwords?

Answer 34

more /etc/sysctl.conf

more /etc/security/limits.conf

more /etc/login.defs

Question 35

Where are all the security packages stored in Linuix?

Answer 35

/opt/Packages

Question 36

How can I verfiy if a security package is good?

How can I see a list of all installed packages>

How can I see a list of available and installed packages?

How can I see more info on a specific package?

Answer 36

rpm -Kv –nosignature /opt/Package/”package name”

rpm -qa

yum list

yum info “package name”

Question 37

What file restricts the users ability too logon as root on any terminal other then console?

Answer 37

/etc/sercuretty

Question 38

What command and option lets me trace a specifc system call like access of a command like ls?

How do I see an overview of all system calls used during a command like ls

Answer 38

strace -e access /bin/ls

strace -c /bin/ls

Question 39

What’s the acronym for straces’s options?

Answer 39

CEO

Question 40

How do I see all kernel parameters using a command?

Answer 40

sysctl -a

Question 41

How do I write too the kernel parameters?

How do I save those changes?

Answer 41

sysctl -w

sysctl -p /etc/sysctl.conf