• Home
  • Articles
  • [Dec 29, 2024] 303-300 Exam Dumps, 303-300 Practice Test Questions [Q57-Q74]

[Dec 29, 2024] 303-300 Exam Dumps, 303-300 Practice Test Questions [Q57-Q74]

Share

[Dec 29, 2024] 303-300 Exam Dumps, 303-300 Practice Test Questions

Free 303-300 Study Guides Exam Questions and Answer


Lpi 303-300 (LPIC Exam 303: Security, version 3.0) Exam is a certification exam that tests an individual's knowledge and skills in the area of Linux security. It is intended for individuals who are seeking to demonstrate their proficiency in securing Linux systems, networks, and services. 303-300 exam covers a broad range of topics, including authentication and authorization, cryptography, network security, and system hardening.

 

NEW QUESTION # 57
Which of the following statements describes the purpose of ndpmon?

  • A. It monitors the availability of a network link by querying network interfaces.
  • B. It monitors the network for neighbor discovery messages from new IPv6 hosts and routers.
  • C. It monitors log files for failed login attempts in order to block traffic from offending network nodes.
  • D. It monitors the network for IPv4 nodes that have not yet migrated to IPv6.
  • E. It monitors remote hosts by periodically sending echo requests to them.

Answer: B


NEW QUESTION # 58
What is the purpose of a TLSA record in DANE?

  • A. To authenticate a DNS server
  • B. To sign a TLS server's public key
  • C. To provide information about a TLS server
  • D. To map a domain name to an IP address

Answer: B


NEW QUESTION # 59
Which file is used to configure rkhunter?

  • A. /etc/maldet.conf
  • B. /etc/aide/aide.conf
  • C. /etc/audit/auditd.conf
  • D. /etc/rkhunter.conf

Answer: D


NEW QUESTION # 60
What effect does the following command have on TCP packets?
iptables- A INPUT d 10.142.232.1 p tcp --dport 20:21 j ACCEPT

  • A. Forward all TCP traffic not on port 20 or 21 to the IP address 10.142.232.1
  • B. Accept all TCP traffic on port 20 and 21 for the IP address 10.142.232.1
  • C. Accept only TCP traffic from 10.142.232.1 destined for port 20 or 21.
  • D. Drop all TCP traffic coming from 10.142.232.1 destined for port 20 or 21.

Answer: B


NEW QUESTION # 61
What is the purpose of a DNSKEY record in DNSSEC?

  • A. To map an IP address to a hostname
  • B. To sign a DNS zone
  • C. To provide information about a DNS server
  • D. To verify the authenticity of a DNS query

Answer: B


NEW QUESTION # 62
What is the purpose of DNS over TLS and DNS over HTTPS?

  • A. To reduce DNS query times
  • B. To provide secure communication between DNS clients and servers
  • C. To improve DNS performance
  • D. To allow DNS servers to communicate securely with each other

Answer: B


NEW QUESTION # 63
Which of the following commands adds a new user usera to FreeIPA?

  • A. ipa-admin create user --account usera --fname User --iname A
  • B. idap- useradd -H Idaps://ipa-server CN=UserA --attribs "Firstname: User: Lastname: A"
  • C. ipa-user- add usera --name "User A"
  • D. useradd usera --directory ipa --gecos "User A"
  • E. ipa user-add usera --first User --last A

Answer: E


NEW QUESTION # 64
Which option in an Apache HTTPD configuration file enables OCSP stapling?
(Specify ONLY the option name without any values or parameters.)
Solution: httpd-ssl.conf
Determine whether the given solution is correct?

  • A. Incorrect
  • B. Correct

Answer: A


NEW QUESTION # 65
Which of the following commands displays all ebtable rules contained in the table filter including their packet and byte counters?

  • A. ebtables -L -t filter -Lv
  • B. ebtables -t filter -Ln -L
  • C. ebtables -t filter -L --Lc
  • D. ebtables -t nat -L -v
  • E. ebtables -L -Lc -t filter

Answer: C


NEW QUESTION # 66
What is a man-in-the-middle attack?

  • A. An attack that targets a specific user or organization
  • B. An attack that aims to steal sensitive information
  • C. An attack that floods a network or server with traffic to make it unavailable
  • D. An attack that intercepts communications between two parties to steal information

Answer: D


NEW QUESTION # 67
What is a honeypot?

  • A. A type of denial-of-service attack
  • B. A network security tool designed to lure attackers into a trap
  • C. A type of phishing scam
  • D. A type of virus

Answer: B


NEW QUESTION # 68
How can host scans be automated on a Linux system?

  • A. Using OpenSCAP
  • B. Using chkrootkit
  • C. Using cron
  • D. Using Linux Audit system

Answer: C


NEW QUESTION # 69
Which command is used to set the owner and group of a file in Linux?

  • A. chgrp
  • B. chmod
  • C. setfacl
  • D. chown

Answer: D


NEW QUESTION # 70
Which tool can be used to manage the Linux Audit system?

  • A. chkrootkit
  • B. auditd
  • C. maldet
  • D. rkhunter

Answer: B


NEW QUESTION # 71
Which of the following statements are true regarding the certificate of a Root CA?
(Choose THREE correct answers.)

  • A. It is a self-signed certificate.
  • B. It has an infinite lifetime and never expires.
  • C. It does not include the private key of the CA.
  • D. It must contain an X509v3 Authority extension.
  • E. It must contain a host name as the common name.

Answer: A,C,D


NEW QUESTION # 72
What is the purpose of NSEC3 in DNSSEC?

  • A. To authenticate a DNS server
  • B. To prevent zone enumeration
  • C. To sign a DNS zone
  • D. To provide information about DNSSEC key signing keys

Answer: B


NEW QUESTION # 73
Which package management tools can be used to verify the integrity of installed files on a Linux system?

  • A. yum and zypper
  • B. dpkg and aptitude
  • C. RPM and DPKG
  • D. APT and YUM

Answer: C


NEW QUESTION # 74
......

303-300 Exam Dumps, 303-300 Practice Test Questions: https://www.lead2passexam.com/Lpi/valid-303-300-exam-dumps.html

Attested 303-300 Dumps PDF Resource [2024]: https://drive.google.com/open?id=1pD8zKHO9k3a7rR3q0-70pCzj0o1CQEzP

Related Articles

more
Lpi 303-300 Certification Practice Exam