nerdexam
ExamsGCIHQuestions#660
GIAC

GCIH · Question #660

GCIH Question #660: Real Exam Question with Answer & Explanation

The correct answer is B: PAM. PAM (Pluggable Authentication Modules) is the standard UNIX framework for linking authentication with external mechanisms such as LDAP, Kerberos, and OTP systems.

Vulnerability Exploitation & Privilege Escalation

Question

What can be used to link UNIX authentication with other mechanisms?

Options

  • ASYSKEY
  • BPAM
  • CS/KEY
  • DShadow

Explanation

PAM (Pluggable Authentication Modules) is the standard UNIX framework for linking authentication with external mechanisms such as LDAP, Kerberos, and OTP systems.

Common mistakes.

  • A. SYSKEY was a Windows NT/2000/XP feature for encrypting the SAM database, not a UNIX authentication linking mechanism.
  • C. S/KEY is a one-time password (OTP) authentication scheme, not a framework for linking or extending UNIX authentication to other mechanisms.
  • D. Shadow refers to the /etc/shadow file that stores hashed user passwords on UNIX systems, not a mechanism for integrating authentication with external systems.

Concept tested. UNIX PAM authentication framework and integration

Reference. https://www.linux-pam.org/Linux-PAM-html/Linux-PAM_SAG.html

Topics

#PAM#UNIX authentication#pluggable authentication#Linux security

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice