When you select to use Pass4Test's products, you have set the first foot on the peak of the IT industry and the way to your dream is one step closer. The practice questions of Pass4Test can not only help you pass SUN certification 310-301 exam and consolidate your professional knowledge, but also provide you one year free update service.
SUN 310-301 authentication certificate is the dream IT certificate of many people. SUN certification 310-301 exam is a examination to test the examinees' IT professional knowledge and experience, which need to master abundant IT knowledge and experience to pass. In order to grasp so much knowledge, generally, it need to spend a lot of time and energy to review many books. Pass4Test is a website which can help you save time and energy to rapidly and efficiently master the SUN certification 310-301 exam related knowledge. If you are interested in Pass4Test, you can first free download part of Pass4Test's SUN certification 310-301 exam exercises and answers on the Internet as a try.
Pass4Test's expert team use their experience and knowledge to study the examinations of past years and finally have developed the best training materials about SUN certification 310-301 exam. Our SUN certification 310-301 exam training materials are very popular among customers and this is the result ofPass4Test's expert team industrious labor. The simulation test and the answer of their research have a high quality and have 95% similarity with the true examination questions. Pass4Test is well worthful for you to rely on. If you use Pass4Test's training tool, you can 100% pass your first time to attend SUN certification 310-301 exam.
Pass4Test is a website which is able to speed up your passing the SUN certification 310-301 exams. Our SUN certification 310-301 exam question bank is produced by Pass4Test's experts's continuously research of outline and previous exam. When you are still struggling to prepare for passing the SUN certification 310-301 exams, please choose Pass4Test's latest SUN certification 310-301 exam question bank, and it will brings you a lot of help.
Exam Code: 310-301
Exam Name: SUN (Sun Certified Security Administrator)
310-301 Free Demo Download: http://www.pass4test.com/310-301.html
NO.1 Which command can customize the size for system log file rotation?
A.dmesg
B.logger
C.logadm
D.syslog
E.syslogd
Correct:C
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.2 /var/adm/messages contains this output: Jan 28 21:23:18 mailhost in.telnetd[20911]: [ID 808958
daemon.warning] refused connect from ns.foo.com (access denied) Why was this line generated?
A.A user connecting from ns.foo.com failed to authenticate.
B.The user daemon is not allowed to log in from ns.foo.com.
C.A portscan was run against mailhost from ns.foo.com.
D.The TCP Wrapper configuration does not allow telnet connections from ns.foo.com.
Correct:D
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.3 How do you distinguish between denial of service attacks and programming errors?
A.You cannot make this distinction.
B.You examine the audit events for the process.
C.You verify that the process user ID is that of a valid user.
D.You check the binary against the Solaris Fingerprint Database.
Correct:A
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.4 Which two types of host keys are supported by Solaris Secure Shell? (Choose two.)
A.AES
B.RSA
C.DSA
D.DES
E.3DES
Correct:B C
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.5 Which setting in the /etc/system file limits the maximum number of user processes to 100 to
prevent a user from executing a fork bomb on a system?
A.set maxuprc = 100
B.set maxusers = 100
C.set user_procs = 100
D.set max_nprocs = 100
Correct:A
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.6 Which syslog facility level specification can be used to record unsuccessful attempts to su(1M)?
A.su.warning
B.cron.debug
C.kernel.alert
D.auth.warning
Correct:D
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.7 What cryptographic assurance is provided by public key cryptography that is NOT provided by
secret key cryptography?
A.integrity
B.confidentiality
C.authentication
D.non-repudiation
Correct:D
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.8 Which is a public key encryption algorithm?
A.AH
B.AES
C.RSA
D.PGP
E.IDEA
Correct:C
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.9 Click the Exhibit button. Which connection demonstrates that telnet has been denied using TCP
Wrappers?
A.Connection 1
B.Connection 2
C.Connection 3
D.Connection 4
Correct:A
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.10 Which command generates client key pairs and adds them to the $HOME/.ssh directory?
A.ssh-add
B.ssh-agent
C.ssh-keygen
D.ssh-keyadd
Correct:C
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.11 The system administrator finds a Trojaned login command using md5 and the Solaris
Fingerprint Database. What is true about the system administrator's incident response tasks?
A.The server must be rebuilt.
B.BSM will identify the attacker.
C.All other replaced system files can be identified using md5 and the Solaris Fingerprint Database.
D.All other replaced system files can be identified using md5 and the Solaris Fingerprint Database and
replaced with trusted versions.
Correct:A
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.12 User fred runs a program that consumes all of the system's memory while continuously
spawning a new program. You decide to terminate all of fred's programs to put a stop to this. What
command should you use?
A.kill -u fred
B.pkill -U fred
C.passwd -l fred
D.kill `ps -U fred -o pid`
Correct:B
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.13 Which evasion technique can NOT be detected by system integrity checks?
A.installing a rootkit
B.adding user accounts
C.abusing an existing user account
D.installing a loadable kernel module
Correct:C
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.14 Which threat can be mitigated by setting the Open Boot PROM security mode to full?
A.system panics
B.booting into single user mode
C.remotely accessing the console
D.logging in as root at the console
Correct:B
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.15 What command loads a DSA identity into a Solaris Secure Shell authentication agent?
A.ssh-add
B.ssh-agent
C.ssh-keyadd
D.ssh-keyload
E.ssh-load-identity
Correct:A
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.16 Which is uncharacteristic of a Trojan horse program used to escalate privileges?
A.It is installed in /usr/bin.
B.It is owned by a normal user.
C.It has the same name as a common program.
D.It contains additional functionality which the user does not expect.
Correct:A
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.17 Which two regular user PATH assignments expose the user to a Trojan horse attack? (Choose
two.)
A.PATH=/usr/bin:/bin
B.PATH=/usr/bin:/sbin:/usr/sbin
C.PATH=/usr/bin:/sbin:/usr/sbin:
D.PATH=.:/usr/bin:/sbin:/usr/sbin
Correct:C D
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.18 Which two services support TCP Wrappers by default in the Solaris 9 OE? (Choose two.)
A.inetd
B.rpcbind
C.sendmail
D.automountd
E.Solaris Secure Shell
Correct:A E
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.19 Which statement about denial of service attack is FALSE?
A.Denial of service is always preventable.
B.Multiple machines may be used as the source of the attack.
C.Service is denied on the victim host when a key resource is consumed.
D.A denial of service attack is an explicit attempt by an attacker to prevent legitimate users of a service
from using that service.
Correct:A
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
NO.20 Which cryptographic assurances are provided by SSL?
A.confidentiality, integrity, availability
B.authorization, confidentiality, message integrity
C.confidentiality, client authentication, server authentication
D.authentication, confidentiality, access control, non-repudiation
Correct:C
SUN exam prep 310-301 exam prep 310-301 questions 310-301 exam simulations
Pass4Test not only have a high reliability, but also provide a good service. If you choose Pass4Test, but don't pass the exam, we will 100% refund full of your cost to you. Pass4Test also provide you with a free update service for one year.
没有评论:
发表评论