Oracle 1Z0-881 Online Practice Questions and Exam Preparation

Oracle 1Z0-881 Online Questions & Answers

• Question 131:

  Which are two advantages of the Service Management Facility compared to the init.d startup scripts? (Choose two.)

  A. It restarts processes if they die.
  B. It handles service dependencies.
  C. It has methods to start and stop the service.
  D. It specifies what the system should do at each run level.
  A. It restarts processes if they die.
  B. It handles service dependencies.

• Question 132:

  Which two commands are part of Sun Update Connection? (Choose two.)

  A. /usr/bin/pkgadm
  B. /usr/bin/keytool
  C. /usr/sbin/smpatch
  D. /usr/sbin/patchadd
  E. /usr/bin/updatemanager
  C. /usr/sbin/smpatch
  E. /usr/bin/updatemanager

• Question 133:

  Which naming service does NOT support password expiration?

  A. files
  B. NIS
  C. NIS+
  D. LDAP
  B. NIS

• Question 134:

  A site security policy dictates that all failed logins to critical systems must be logged and monitored. Which parameter must be changed in /etc/default/login to enable this functionality?

  A. SYSLOG
  B. LOG_LOGIN_FAILURES
  C. SYSLOG_LOG_FAILURES
  D. LOG_SYSLOG_FAILURES
  E. SYSLOG_FAILED_LOGINS
  E. SYSLOG_FAILED_LOGINS

• Question 135:

  An Internet service provider is offering shell accounts on their systems. As a special service, customers can also apply for a root account to get their own virtual machine. The provider has implemented this by using zones, and the customers get root access to the non-global zone. One of their customers is developing cryptographic software and is using the ISP machine for testing newly developed Solaris crypto providers. What kind of testing is available to this developer?

  A. The developer is able to test newly developed user-level providers.
  B. The developer is able to test newly developed kernel software providers.
  C. The developer can NOT test newly developed providers in a non-global zone.
  D. The developer is able to do the same tests as if developing as root in the global zone.
  A. The developer is able to test newly developed user-level providers.

• Question 136:

  As part of the normal deployment process, a security administrator is required to verify the security configuration of a new Solaris 10 zone before it can be put into production. Using the Solaris Security Toolkit, the security administrator will verify the zone's configuration against the corporate baseline, baseline.driver. Which command line will the security administrator use to verify the zone named yennov?

  A. jass-execute -z yennov -a baseline.driver
  B. zlogin yennov jass-execute -a baseline.driver
  C. jass-execute -R /export/yennov/root -a baseline.driver
  D. chroot /export/yennov/root jass-execute -a baseline.driver
  B. zlogin yennov jass-execute -a baseline.driver

• Question 137:

  You suspect that the /usr/bin/ls binary on a system might have been replaced with a "Trojan horse." You have been able to determine that the correct MD5 checksum for the real /usr/bin/ls binary is: md5 (/usr/bin/ls) = b526348afd2d57610dd3635e46602d2a Which standard Solaris command can be used to calculate the MD5 checksum for the /usr/bin/ls file?

  A. md5 /usr/bin/ls
  B. sum -r /usr/bin/ls
  C. sum -a md5 /usr/bin/ls
  D. crypt -a md5 /usr/bin/ls
  E. digest -a md5 /usr/bin/ls
  E. digest -a md5 /usr/bin/ls

• Question 138:

  The kernel calculates the effective set of privileges based on three other privilege sets. This calculation begins with the set of privileges inherited from the parent process. The effective set is then further constrained by two other sets of privileges. Which two describe the remaining privilege sets? (Choose two.)

  A. Permitted set - a subset of the inheritable set
  B. Limit set - the ouside limit of privileges available to the process
  C. Basic set - the privileges which define the system security policy
  D. Implicit set - the set of privileges required by a process to function correctly
  E. Disallowed set - the set of privileges specifically witheld in the process owner's profile
  A. Permitted set - a subset of the inheritable set
  B. Limit set - the ouside limit of privileges available to the process

• Question 139:

  Click the Exhibit button.

  

  You maintain a minimized and hardened web server. The exhibit shows the current credentials that the web server runs with. You receive a complaint about the fact that a newly installed webbased application does not function. This application is based on a /bin/ksh cgi-bin script. What setting prevents this cgi-bin program from working?

  A. The system might NOT have /bin/ksh installed.
  B. The server is NOT allowed to call the exec system call.
  C. The server should run with uid=0 to run cgi-bin scripts.
  D. Some of the libraries needed by /bin/ksh are NOT present in the webserver's chroot environment.
  B. The server is NOT allowed to call the exec system call.

• Question 140:

  Which of the descriptions is a high-level overview of how Kerberos works?

  A. In a Kerberos environment, a user authenticates once to each service.
  B. In a Kerberos environment, a user authenticates once to a central authority.
  C. In a Kerberos environment, a user needs to type a password for each service.
  D. In a Kerberos environment, a user authenticates once to any service of its choosing and is then pre authenticated for all other services.
  B. In a Kerberos environment, a user authenticates once to a central authority.