LPI 303-200 Exam Practice Test Instant Access

Question 1

Which option of the openvpn command should be used to ensure that ephemeral keys are not written to the swap space?

A--mlock

B--no-swap

C--root-swap

D--keys-no-swap

Answer : A

Question 2

Which of the following terms refer to existing scan techniques with nmap? (Choose TWO correct answers.)

AXmas Scan

BZero Scan

CFIN Scan

DIP Scan

EUDP SYN Scan

Answer : A, C

Question 3

Which of the following types can be specified within the Linux Audit system? (Choose THREE correct answers)

AControl rules

BFile system rules

CNetwork connection rules

DConsole rules

ESystem call rules

Answer : A, B, E

Question 4

Which directive is used in an OpenVPN server configuration in order to send network configuration information to the client? (Specify ONLY the option name without any values or parameters.)

See Below Explanation:

https;//community.openvpn.net/openvpn/wiki/RoutedLans

Answer : A

https;//community.openvpn.net/openvpn/wiki/RoutedLans

Question 5

Given a proper network and name resolution setup, which of the following commands establishes a trust between a FreelPA domain and an Active Directory domain?

Aipa trust-add --type ad addom --admin Administrator --password

Bipa-ad -add-trust --account ADDOM\Administrator--query-password

Cnet ad ipajoin addom -U Administrator -p

Dtrustmanager add -_domain ad: //addom --user Administrator -w

Eipa ad join addom -U Administrator -w

Answer : A

Question 6

Which of the following statements describes the purpose of ndpmon?

Ait monitors the network for neighbor discovery messages from new IPv6 hosts and routers

Bit monitors remote hosts by periodically sending echo requests to them.

Cit monitors the availability of a network link by querying network interfaces.

DIt monitors the network for IPv4 nodes that have not yet migrated to IPv6.

EIt monitors log files for failed login attempts in order to block traffic from offending network nodes

Answer : A

Question 7

Which of the following statements is true regarding eCryptfs?

AFor every file in an eCryptfs directory there exists a corresponding file that contains the encrypted content.

BThe content of all files in an eCryptfs directory is stored in an archive file similar to a tar file with an additional index to improve performance.

CAfter unmounting an eCryptfs directory, the directory hierarchy and the original file names are still visible, although, it is not possible to view the contents of the files.

DWhen a user changes his login password, the contents of his eCryptfs home directory has to be re-encrypted using his new login password.

EeCryptfs cannot be used to encrypt only directories that are the home directory of a regular Linux user.

Answer : E

LPIC-3 Exam 303: Security 303-200 Exam Practice Test