1. Home
  2. Oracle
  3. 1Z0-881

Oracle 1Z0-881 Online Practice Questions and Exam Preparation

1Z0-881 Exam Details

  • Exam Code
    :1Z0-881
  • Exam Name
    :Oracle Solaris 10 Security Administrator Certified Expert Exam
  • Certification
    :Oracle Certifications
  • Vendor
    :Oracle
  • Total Questions
    :293 Q&As
  • Last Updated
    :Dec 09, 2021

Oracle 1Z0-881 Online Questions & Answers

  • Question 151:

    Which two statements about the digest and mac commands are true? (Choose two.)

    A. The mac command can use the Digital Encryption Standard (DES) in cipher-block chained (CBC) mode. The digest command can NOT.
    B. The mac command uses a distinct class of hash functions called message authentication codes (MACs). MAC functions combine the input file with a key supplied by the user, returning a fixed length digest.
    C. The mac command uses a distinct class of hash functions called MACs. A MAC function combines the input file with a randomly generated salt, and returns a digest.
    D. The digest command requires that the user supply a key. The mac command does NOT. The digest command takes an input file, combines it with the key, and a variable length digest is returned.

  • Question 152:

    Click the Task button.

    Place the cryptographic providers next to the correct class functions.

    Drag and drop question. Drag the items to the proper locations.

    Select and Place:

  • Question 153:

    On a system with these settings in audit_control: dir:/var/audit flags:lo,ex,nt naflags:na minfree:20 Which will NOT be a factor in the size of the audit trail generated by the system?

    A. the audit policy settings
    B. the number of active users
    C. the settings in audit_user
    D. the settings in audit_event
    E. the amount of memory in the system

  • Question 154:

    The security administrator has created a Basic Audit and Report Tool (BART) control manifest for the /etc directory. A test manifest is created about one hour later, and the two manifests are compared. The administrator checks all attributes for the files in /etc. Which event will NOT be reported by comparing the two manifests with BART?

    A. A file link was removed.
    B. A file was added to the directory.
    C. Permissions on a file were changed.
    D. Permissions on a file were changed and then restored.
    E. A file was examined using vi, edited, restored to original, and saved.

  • Question 155:

    The company you work for is leasing zones to customers to run their applications in.

    You want each customer to be able to run the zoneadm command to start their zone in case of accidental shutdown, and also zlogin so they can access the console of their zone. Which are three reasons why you should NOT create accounts for them in the global zone and grant them the Zone Management profile? (Choose three.)

    A. They will be able to reboot the global zone.
    B. They will be able to reboot other customers' zones.
    C. They will be able to log in to other customers' zones.
    D. They will be able to see processes in other customers' zones.
    E. They will be able to disable auditing in other customers' zones.

  • Question 156:

    A Solaris 10 system has IP Filter enabled and configured. A section of the /etc/ipf/ipf.conf configuration file is reported below: block return-rst in quick proto tcp from any to any port = 23 flags S block return-icmp (port-unr) in proto udp from any to any port > 3000 Which two statements are true? (Choose two.)

    A. The system blocks TCP RST packets.
    B. The system will block incoming telnet connections and returns a TCP RST packet.
    C. The system will block all incoming echo requests and replies with an ICMP port unreachable packet.
    D. The system does NOT return ICMP-type packets for UDP incoming connections received on ports greater than 3000.
    E. The system will block and replay with an ICMP port unreachable packet to UDP connections received for ports greater than 3000.

  • Question 157:

    Click the Task button.

    There are a number of security tasks that a typical security administrator performs when configuring and deploying new servers.

    Place the security task next to its description.

    Drag and drop question. Drag the items to the proper locations.

    Select and Place:

  • Question 158:

    A user that you are investigating is logged in on a system with auditing enabled. The user is running vi, and you need to log which files the user is accessing. Unfortunately, the fr class is not audited, so you want to explicitly alter the audit preselection mask for this vi process. Which command allows you to do that?

    A. audit
    B. svccfg
    C. bsmconv
    D. auditconfig

  • Question 159:

    After using the Solaris Security Toolkit on a system, some of your users have complained that they are no longer able to connect to the system through telnet. Which option will allow users to connect to the system without impacting security?

    A. Re-enable the telnet service.
    B. Re-enable the telnet service, but force users to use IP Filter.
    C. Leave telnet disabled and suggest that users use SSH instead.
    D. Re-enable the telnet service, but force users to use Kerberos passwords.

  • Question 160:

    You are configuring a new system to be used as an intranet web server. After you have installed the minimal amount of packages and patched the system, you added the appropriate web server packages (SUNWapch2r and SUNWapch2u). By default, the web server daemon will be started using UID webservd and the basic privilege set. To comply with the company's policy of least privilege, you need to minimize the privileges that the web server will have. What will you modify to specify the privileges that the web service will run with?

    A. the PRIV_DEFAULT setting in /etc/security/policy.conf
    B. the defaultpriv setting of webserverd in /etc/user_attr
    C. the privileges property of the web service in the SMF repository
    D. the privs property of the web service in /etc/security/exec_attr

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Oracle exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 1Z0-881 exam preparations and Oracle certification application, do not hesitate to visit our Vcedump.com to find your solutions here.