303-200 Exam Questions
61 real 303-200 exam questions with expert-verified answers and explanations. Page 1 of 2.
- Question #1
Which of the following commands adds a new user usera to FreelPA?
- Question #2
Which option of the openvpn command should be used to ensure that ephemeral keys are not written to the swap space?
- Question #3
Which of the following statements is used in a parameter file for setkey in order to create a new SPD entry?
- Question #4
Which of the following terms refer to existing scan techniques with nmap? (Choose TWO correct answers.)
- Question #5
When OpenVPN sends a control packet to its peer, it expects an acknowledgement in 2 seconds by default. Which of the following options changes the timeout period to 5 seconds?
- Question #6
Which of the following commands makes the contents of the eCryptfs encrypted directory - /Private available to the user?
- Question #7
Which command revokes ACL-based write access for groups and named users on the file afile?
- Question #8
How does TSIG authenticate name servers in order to perform secured zone transfers?
- Question #9
Which of the following are differences between AppArmor and SELinux? (Choose TWO correct answers).
- Question #10
Which of the following commands adds users using SSSD's local service?
- Question #11
Which of the following statements are true regarding the certificate? (Choose THREE correct answers.)
- Question #12
Which of the following statements are valid wireshark capture filters? {Choose TWO correct answers.)
- Question #13
Which of the following openssl commands generates a certificate signing request (CSR) using the already existing private key contained in the file private/keypair.pem?
- Question #14
Which of the following command lines sets the administrator password for ntop to testing 123?
- Question #15
Which of the following statements is true about chroot environments?
- Question #18
Which of the following expressions are valid AIDE rules? (Choose TWO correct answers.)
- Question #20
Which of the following authentication methods was added to NFS in version 4?
- Question #21
Which of the following commands defines an audit rule that monitors read and write operations to the file/ etc/firewall/rules and associates the rule with the name firewall?
- Question #22
Which of the following information, within a DNSSEC- signed zone, is signed by the key signing key?
- Question #23
Which of the following lines in an OpenSSL configuration adds an X 509v3 Subject Alternative
- Question #25
Which of the following configuration options makes Apache HTTPD require a client certificate for authentication?
- Question #26
Given a proper network and name resolution setup, which of the following commands establishes a trust between a FreelPA domain and an Active Directory domain?
- Question #27
Which of the following resources of a shell and its child processes can be controlled by the Bash build-in command ulimit? (Choose THREE correct answers.)
- Question #28
Linux Extended File Attributes are organized in namespaces. Which of the following names correspond to existing attribute namespaces? (Choose THREE correct answers.)
- Question #29
Which of the following stanzas is a valid client configuration for FreeRADIUS?
- Question #30
Which of the following practices are important for the security of private keys? (Choose TWO correct answers.)
- Question #31
Given that this device has three different keys, which of the following commands deletes only the first key?
- Question #34
Which of the following types can be specified within the Linux Audit system? (Choose THREE correct answers)
- Question #35
Which of the following sections are allowed within the Kerberos configuration file krb5.conf? (Choose THREE correct answers.)
- Question #36
Which of the following parameters to openssl s_client specifies the host name to use for TLS Server Name Indication?
- Question #37
Which of the following statements is true regarding eCryptfs?
- Question #38
Which of the following methods can be used to deactivate a rule in Snort? (Choose TWO correct answers.)
- Question #39
What happens when the command getfattr afile is run while the file afile has no extended attributes set?
- Question #40
What effect does the configuration SSLStrictSNIVHostCheck on have on an Apache HTTPD virtual host?
- Question #41
What is the purpose of IP sets?
- Question #42
Which of the following components are part of FreeIPA? (Choose THREE correct answers.)
- Question #43
What is the purpose of the program snort-stat?
- Question #44
Which of the following access control models is established by using SELinux?
- Question #45
Which of the following prefixes could be present in the output of getcifsacl? (Choose THREE correct answers.)
- Question #46
What effect does the following command have on TCP packets? iptables -A INPUT -d 10 142 232.1 -p tcp -dport 20:21 -j ACCEPT
- Question #47
How are SELinux permissions related to standard Linux permissions? (Choose TWO correct answers.)
- Question #48
Which of the following commands disables the automatic password expiry for the user usera?
- Question #49
Which of the following commands changes the source IP address to 192.0.2.11 for all IPv4 packets which go through the network interface eth0?
- Question #51
Which of the following commands displays all ebtable rules contained in the table filter including their packet and byte counters?
- Question #52
Which of the following statements are true regarding the certificate of a Root CA? (Choose TWO correct answers.)
- Question #53
Which of the following statements describes the purpose of ndpmon?
- Question #54
in which path is the data, which can be altered by the sysctl command, accessible?
- Question #55
Which of the following DNS record types can the command dnssec-signzone add to a zone? (Choose THREE correct answers.)
- Question #56
Which DNS label points to the DANE information used to secure HTTPS connections to
- Question #59
Which of the following keywords are built-in chairs for the iptables nat table? (Choose THREE correct answers)