EMT Practice Test

1. Question Content...


Question List

Question1: Which of the following practices are important for the security of private keys? (Choose TWO correct answers.)

Question2: CORRECT TEXT
Which PAM module checks new passwords against dictionary words and enforces complexity? (Specially the module name only without any path.)

Question3: What is the purpose of IP sets?

Question4: Which of the following statements is true regarding eCryptfs?

Question5: Which of the following sections are allowed within the Kerberos configuration file krb5.conf? (Choose THREE correct answers.)

Question6: SIMULATION
Which command is used to run a new shell for a user changing the SELinux context? (Specify ONLY the command without any path or parameters.)

Question7: Which DNS label points to the DANE information used to secure HTTPS connections to https:// www.example.com/?

Question8: Which of the following are differences between AppArmor and SELinux? (Choose TWO correct answers).

Question9: CORRECT TEXT
Which command installs and configures a new FreelPA server, including all subcomponents, and creates a new FreelPA domain? (Specially ONLY the command without any path or parameters).

Question10: When OpenVPN sends a control packet to its peer, it expects an acknowledgement in 2 seconds by default.
Which of the following options changes the timeout period to 5 seconds?

Question11: Which of the following types can be specified within the Linux Audit system? (Choose THREE correct answers)

Question12: What is the purpose of the program snort-stat?

Question13: Which of the following are differences between AppArmor and SELinux? (Choose TWO correct answers).

Question14: Which of the following openssl commands generates a certificate signing request (CSR) using the already existing private key contained in the file private/keypair.pem?

Question15: Which of the following parameters to openssl s_client specifies the host name to use for TLS Server Name Indication?

Question16: Which of the following methods can be used to deactivate a rule in Snort? (Choose TWO correct answers.)

Question17: Which of the following access control models is established by using SELinux?

Question18: Which of the following statements is true regarding eCryptfs?

Question19: in which path is the data, which can be altered by the sysctl command, accessible?

Question20: When OpenVPN sends a control packet to its peer, it expects an acknowledgement in 2 seconds by default. Which of the following options changes the timeout period to 5 seconds?

Question21: Which of the following authentication methods was added to NFS in version 4?

Question22: How are SELinux permissions related to standard Linux permissions? (Choose TWO correct answers.)

Question23: When OpenVPN sends a control packet to its peer, it expects an acknowledgement in 2 seconds by default. Which of the following options changes the timeout period to 5 seconds?

Question24: Which of the following openssl commands generates a certificate signing request (CSR) using the already existing private key contained in the file private/keypair.pem?

Question25: SIMULATION
What command is used to update NVTs from the OpenVAS NVT feed? (Specify ONLY the command without any path or parameters).

Question26: Which of the following lines in an OpenSSL configuration adds an X 509v3 Subject Alternative Name extension for the host names example.org and www.example.org to a certificate'?

Question27: Which command revokes ACL-based write access for groups and named users on the file afile?

Question28: SIMULATION
Which command included in the Linux Audit system provides searching and filtering of the audit log?
(Specify ONLY the command without any path or parameters.)

Question29: Which of the following configuration options makes Apache HTTPD require a client certificate for authentication?

Question30: Which option of the openvpn command should be used to ensure that ephemeral keys are not written to the swap space?

Question31: Which of the following commands changes the source IP address to 192.0.2.11 for all IPv4 packets which go through the network interface eth0?

Question32: Which of the following statements are true regarding the certificate? (Choose THREE correct answers.)

Question33: Which of the following parameters to openssl s_client specifies the host name to use for TLS Server Name Indication?

Question34: SIMULATION
Which command, included in BIND, generates DNSSEC keys? (Specify ONLY the command without any path or parameters.)

Question35: Which command revokes ACL-based write access for groups and named users on the file afile?

Question36: SIMULATION
What option of mount.cifs specifies the user that appears as the local owner of the files of a mounted CIFS share when the server does not provide ownership information? (Specify ONLY the option name without any values or parameters.)

Question37: Which of the following information, within a DNSSEC- signed zone, is signed by the key signing key?

Question38: Which of the following practices are important for the security of private keys? (Choose TWO correct answers.)

Question39: Which of the following statements are valid wireshark capture filters? (Choose TWO correct answers.)

Question40: Which of the following database names can be used within a Name Service Switch (NSS) configuration file?
(Choose THREE correct answers).

Question41: In which path is the data, which can be altered by the sysctl command, accessible?

Question42: A LUKS device was mapped using the command:
cryptsetup luksOpen/dev/sdal crypt-vol
Given that this device has three different keys, which of the following commands deletes only the first key?