LPI 303-200 Exam Questions Instant Access

Question 1

Which command installs and configures a new FreelPA server, including all sub-components, and creates a new FreelPA domain? (Specially ONLY the command without any path or parameters).

See Below Explanation:

https://www.freeipa.org/images/2/2b/lnstallation_and_Deployment.Guidep.pdf

Answer : A

https://www.freeipa.org/images/2/2b/lnstallation_and_Deployment.Guidep.pdf

Question 2

Which of the following DNS record types can the command dnssec-signzone add to a zone? (Choose THREE correct answers.)

AASIG

BNSEC

CNSEC3

DNSSIG

ERRSIG

Answer : B, C, E

Question 3

Which of the following statements is true about chroot environments?

ASymbolic links to data outside the chroot path are followed, making files and directories accessible

BHard links to files outside the chroot path are not followed, to increase security

CThe chroot path needs to contain all data required by the programs running in the chroot environment

DPrograms are not able to set a chroot path by using a function call, they have to use the command chroot

EWhen using the command chroot, the started command is running in its own namespace and cannot communicate with other processes

Answer : C

Question 4

Which of the following components are part of FreeIPA? (Choose THREE correct answers.)

ADHCP Server

BKerberos KDC

CIntrusion Detection System

DPublic Key Infrastructure

EDirectory Server

Answer : B, D, E

Question 5

Which of the following expressions are valid AIDE rules? (Choose TWO correct answers.)

A!/var/run/.*

Bappend: /var/log/*

C/usr=all

D#/bin/

E/etc p+i+u+g

Answer : A, E

Question 6

Which of the following commands changes the source IP address to 192.0.2.11 for all IPv4 packets which go through the network interface eth0?

Aiptables ~t nat -A POSTROUTING ~o eth0 -j SNAT -to-source 192.0.2.11

Biptables ~t nat -A PREROUT1NG -\ eth0 -j SNAT -to-source 192.0.2.11

Ciptables -t nat -A POSTROUTING H eth0 -j DNAT -to-source 192.0.2.11

Diptables -t mangle -A POSTROUTING -i eth0 -j SNAT -to-source 192.0.2.11

Eiptables -t mangle -A POSTROUTING -0 eth0 -j SNAT -to-source 192.0.2.11

Answer : A

Question 7

Which command is used to run a new shell for a user changing the SELinux context? (Specify ONLY the command without any path or parameters.)

See Below Explanation:

https://www.centos.ofg/docs/5/html/DeployrnenLGuide-en-US/sec-sel-admincontrol.html

Answer : A

https://www.centos.ofg/docs/5/html/DeployrnenLGuide-en-US/sec-sel-admincontrol.html

LPIC-3 Exam 303: Security 303-200 Exam Questions