Exam Code: 303-200 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: LPIC-3 Exam 303: Security, version 2.0
Certification Provider: LPI
Free Today! Guaranteed Training- Pass 303-200 Exam.
Q1. Which of the following expressions are valid AlDE rules? (Choose TWO correct answers.)
A. !/var/run/.*
B. append: /var/log/*
C. /usr=all
D. #/bin/
E. /etc p+i+u+g
Answer: A, E
Q2. How does TSlG authenticate name servers in order to perform secured zone transfers?
A. Both servers mutually verify their X509 certificates.
B. Both servers use a secret key that is shared between the servers.
C. Both servers verify appropriate DANE records for the labels of the NS records used to delegate the transferred zone.
D. Both servers use DNSSEC to mutually verify that they are authoritative for the transferred zone.
Answer: B
Q3. Which of the following resources of a shell and its child processes can be controlled by the Bash build-in command ulimit? (Choose THREE correct answers.)
A. The maximum size of written files
B. The maximum number of open file descriptors
C. The maximum number of newly created files
D. The maximum number of environment variables
E. The maximum number of user processes
Answer: A, B, E
Q4. Which of the following commands disables the automatic password expiry for the user usera?
A. chage --maxdays none usera
B. chage -maxdays 99 usera
C. chage --maxdays -1 usera
D. chage --lastday none usera
E. chage --lastday 0 usera
Answer: C
Q5. What effect does the configuration SSLStrictSNlVHostCheck on have on an Apache HTTPD virtual host?
A. The clients connecting to the virtual host must provide a client certificate that was issued by the same CA that issued the server's certificate.
B. The virtual host is served only to clients that support SNl.
C. All of the names of the virtual host must be within the same DNS zone.
D. The virtual host is used as a fallback default for all clients that do not support SNl.
E. Despite its configuration, the virtual host is served only on the common name and Subject Alternative Names of the server certificates.
Answer: B
Q6. Linux Extended File Attributes are organized in namespaces. Which of the following names correspond to existing attribute namespaces? (Choose THREE correct answers.)
A. default
B. system
C. owner
D. trusted
E. user
Answer: B, D, E
Q7. Which command revokes ACL-based write access for groups and named users on the file afile?
A. setfacl -x group: * : rx, user:*: rx afile
B. setfacl -x mask: : rx afile
C. setfacl ~m mask: : rx afile
D. setfacl ~m group: * : rx, user:*: rx afile
Answer: C
Q8. Which of the following types can be specified within the Linux Audit system? (Choose THREE correct answers)
A. Control rules
B. File system rules
C. Network connection rules
D. Console rules
E. System call rules
Answer: A, B, E