Act now and download your LPI 303-200 test today! Do not waste time for the worthless LPI 303-200 tutorials. Download Refresh LPI LPIC-3 Exam 303: Security, version 2.0 exam with real questions and answers and begin to learn LPI 303-200 with a classic professional.
Q9. Which of the following access control models is established by using SELinux?
A. Security Access Control (SAC)
B. Group Access Control (GAC)
C. User Access Control (UAC)
D. Discretionary Access Control (DAC)
E. Mandatory Access Control (MAC)
Answer: E
Q10. Which of the following are differences between AppArmor and SELinux? (Choose TWO correct answers).
A. AppArmor is implemented in user space only. SELinux is a Linux Kernel Module.
B. AppArmor is less complex and easier to configure than SELinux.
C. AppArmor neither requires nor allows any specific configuration. SELinux must always be manually configured.
D. SELinux stores information in extended file attributes. AppArmor does not maintain file specific information and states.
E. The SELinux configuration is loaded at boot time and cannot be changed later on AppArmor provides user space tools to change its behavior.
Answer: B, D
Q11. Which of the following components are part of FreelPA? (Choose THREE correct answers.)
A. DHCP Server
B. Kerberos KDC
C. lntrusion Detection System
D. Public Key lnfrastructure
E. Directory Server
Answer: B, D, E
Q12. Which of the following DNS record types can the command dnssec-signzone add to a zone? (Choose THREE correct answers.)
A. ASlG
B. NSEC
C. NSEC3
D. NSSlG
E. RRSlG
Answer: B, C, E
Q13. Which of the following expressions are valid AlDE rules? (Choose TWO correct answers.)
A. !/var/run/.*
B. append: /var/log/*
C. /usr=all
D. #/bin/
E. /etc p+i+u+g
Answer: A, E
Q14. Which of the following are differences between AppArmor and SELinux? (Choose TWO correct answers).
A. AppArmor is implemented in user space only. SELinux is a Linux Kernel Module.
B. AppArmor is less complex and easier to configure than SELinux.
C. AppArmor neither requires nor allows any specific configuration. SELinux must always be manually configured.
D. SELinux stores information in extended file attributes. AppArmor does not maintain file specific information and states.
E. The SELinux configuration is loaded at boot time and cannot be changed later on AppArmor provides user space tools to change its behavior.
Answer: B, D
Q15. Which of the following statements is true about chroot environments?
A. Symbolic links to data outside the chroot path are followed, making files and directories accessible
B. Hard links to files outside the chroot path are not followed, to increase security
C. The chroot path needs to contain all data required by the programs running in the chroot environment
D. Programs are not able to set a chroot path by using a function call, they have to use the command chroot
E. When using the command chroot, the started command is running in its own namespace and cannot communicate with other processes
Answer: C
Q16. Which of the following DNS record types can the command dnssec-signzone add to a zone? (Choose THREE correct answers.)
A. ASlG
B. NSEC
C. NSEC3
D. NSSlG
E. RRSlG
Answer: B, C, E