Leading 202-450 Cram 2021

NEW QUESTION 1
Which of the following OpenVPN configuration options makes OpenVPN forward network packets between VPN clients itself instead of passing the packets on to the Linux host which runs the OpenVPN server for further processing?

• A. inter-client-traffic
• B. client-to-client
• C. client-router
• D. client-pass
• E. grant-client-traffic

Answer: B

NEW QUESTION 2
A company is transitioning to a new DNS domain name and wants to accept e-mail for both domains for all of its users on a Postfix server.
Which configuration option should be updated to accomplish this?

• A. mydomain
• B. mylocations
• C. mydestination
• D. myhosts
• E. mydomains

Answer: C

NEW QUESTION 3
How are PAM modules organized and stored?

• A. As plain text files in /etc/security/
• B. A statically linked binaries in /etc/pam.d/bin/
• C. As Linux kernel modules within the respective sub directory of /lib/modules/
• D. As shared object files within the /lib/ directory hierarchy
• E. As dynamically linked binaries in /usr/lib/pam/sbin/

Answer: E

NEW QUESTION 4
Which tool creates a Certificate Signing Request (CSR) for serving HTTPS with Apache HTTPD?

• A. apachect1
• B. certgen
• C. cartool
• D. httpsgen
• E. openssl

Answer: E

NEW QUESTION 5
Which statements about the Alias and Redirect directives in Apache HTTPD’s configuration file are true? (Choose two.)

• A. Alias can only reference files under DocumentRoot
• B. Redirect works with regular expressions
• C. Redirect is handled on the client side
• D. Alias is handled on the server side
• E. Alias is not a valid configuration directive

Answer: CD

NEW QUESTION 6
Which of the following values can be used in the OpenLDAP attribute olcBackend for any object of the class olcBackendConfig to specify a backend? (Choose three.)

• A. xml
• B. bdb
• C. passwd
• D. ldap
• E. text

Answer: BDE

NEW QUESTION 7
Select the Samba option below that should be used if the main intention is to setup a guest printer service?

• A. security = cups
• B. security = ldap
• C. security = pam
• D. security = share
• E. security = printing

Answer: D

NEW QUESTION 8
What option for BIND is required in the global options to disable recursive queries on the DNS server by default?

• A. allow-recursive-query ( none; );
• B. allow-recursive-query off;
• C. recursion { disabled; };
• D. recursion { none; };
• E. recursion no;

Answer: E

NEW QUESTION 9
When are Sieve filters usually applied to an email?

• A. When the email is delivered to a mailbox
• B. When the email is relayed by an SMTP server
• C. When the email is received by an SMTP smarthost
• D. When the email is sent to the first server by an MUA
• E. When the email is retrieved by an MUA

Answer: A

NEW QUESTION 10
Which of the following Samba configuration parameters is functionally identical to the parameter read only=yes?

• A. browseable=no
• B. read write=no
• C. writeable=no
• D. write only=no
• E. write access=no

Answer: C

NEW QUESTION 11
What does the samba-tool testparm command confirm regarding the Samba configuration?

• A. The configuration loads successfully.
• B. The service operates as expected.
• C. The Samba services are started automatically when the system boots.
• D. The netfilter configuration on the Samba server does not block any access to the services defined in the configuration.
• E. All running Samba processes use the most recent configuration versio

Answer: A

NEW QUESTION 12
Which of the following lines in the sshd configuration file should, if present, be changed in order to increase the security of the server? (Choose two.)

• A. Protocol 2, 1
• B. PermitEmptyPasswords no
• C. Port 22
• D. PermitRootLogin yes
• E. IgnoreRhosts yes

Answer: AD

NEW QUESTION 13
Which of the following information has to be submitted to a certification authority in order to request a web server certificate?

• A. The web server’s private key.
• B. The IP address of the web server.
• C. The list of ciphers supported by the web server.
• D. The web server’s SSL configuration file.
• E. The certificate signing reques

Answer: E

NEW QUESTION 14
The following Apache HTTPD configuration has been set up to create a virtual host available at www.example.com and www2.example.com:

Even though Apache HTTPD correctly processed the configuration file, requests to both names are not handled correctly. What should be changed in order to ensure correct operations?

• A. The configuration must be split into two VirtualHost sections since each virtual host may only haveone name.
• B. The port mentioned in opening VirtualHost tag has to be appended to the ServerName declaration’s values.
• C. Both virtual host names have to be placed as comma separated values in one ServerName declaration.
• D. Both virtual host names have to be mentioned in the opening VirtualHost tag.
• E. Only one Server name declaration may exist, but additional names can be declared in ServerAlias options.

Answer: C

NEW QUESTION 15
Which command is used to configure which file systems a NFS server makes available to clients?

• A. exportfs
• B. mkfs.nfs
• C. mount
• D. nfsservct1
• E. telinit

Answer: A

NEW QUESTION 16
Which of the following types of IPv6 address assignments does DHCPv6 support? (Choose three.)

• A. Assignments of normal IPv6 addresses that can be renewed.
• B. Assignments of temporary IPv6 addresses that cannot be renewed.
• C. Assignments of blacklisted IPv6 addresses that should no longer be used.
• D. Assignments of IPv6 prefixes that can be used for routing or further assignments.
• E. Assignments of anonymous IPv6 addresses whose assignment is not logged by the DHCPv6 serve

Answer: ABD

NEW QUESTION 17
CORRECT TEXT
According to the configuration below, what is the full e-mail address of the administrator for this domain?

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
admin@mars.example.com

NEW QUESTION 18
Which of the following are logging directives in Apache HTTPD? (Choose two.)

• A. TransferLog
• B. CustomLog
• C. ErrorLog
• D. ServerLog
• E. VHostLog

Answer: AB

NEW QUESTION 19
Which of the following services belongs to NFSv4 and does not exist in NFSv3?

• A. rpc.idmapd
• B. rpc.statd
• C. nfsd
• D. rpc.mountd

Answer: A

NEW QUESTION 20
Performing a DNS lookup with dig results in this

• A. There is no . after linuserv.example.net in the PTR record in the forward lookup zone file
• B. There is no . after linuserv in the PTR record in the forward lookup zone file
• C. There is no . after linuserv.example.net in the PTR record in the reverse lookup zone file
• D. The . in the NS definition in the reverse lookup zone has to be removed

Answer: C

NEW QUESTION 21
CORRECT TEXT
Which option in the Postfix configuration makes Postfix pass email to external destinations to another SMTP-server? (Specify ONLY the option name without any values.)

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
relay server

NEW QUESTION 22
After running ssh-keygen and accepting the default values, which of the following files are changed or created? (Choose two.)

• A. ~/.ssh/id_rsa.key
• B. ~/.ssh/id_rsa.pub
• C. ~/.ssh/id_rsa.prv
• D. ~/.ssh/id_rsa.crt
• E. ~/.ssh/id_rsa

Answer: BE

NEW QUESTION 23
CORRECT TEXT
What configuration directive of the Apache HTTPD server defines where log files are stored? (Specify ONE of the directives without any other options.)

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
ErrorLog

NEW QUESTION 24
Which of the following statements are true regarding Server Name Indication (SNI)? (Choose two.)

• A. It supports transparent failover of TLS sessions from one web server to another.
• B. It allows multiple SSL/TLS secured virtual HTTP hosts to coexist on the same IP address.
• C. It enables HTTP servers to update the DNS of their virtual hosts’ names using the X 509 certificates of the virtual hosts.
• D. It provides a list of available virtual hosts to the client during the TLS handshake.
• E. It submits the host name of the requested URL during the TLS handshak

Answer: BE

NEW QUESTION 25
Which http_access directive for Squid allows users in the ACL named sales_net to only access the Internet at times specified in the time_acl named sales_time?

• A. http_access deny sales_time sales_net
• B. http_access allow sales_net sales_time
• C. http_access allow sales_net and sales-time
• D. allow http_access sales_net sales_time
• E. http_access sales_net sales_time

Answer: B

NEW QUESTION 26
......