1Z0-881 Exam Details

  • Exam Code
    :1Z0-881
  • Exam Name
    :Oracle Solaris 10 Security Administrator Certified Expert Exam
  • Certification
    :Oracle Certifications
  • Vendor
    :Oracle
  • Total Questions
    :293 Q&As
  • Last Updated
    :Dec 09, 2021

Oracle 1Z0-881 Online Questions & Answers

  • Question 31:

    You want to know when, by whom, and how privileges are used on one of your systems. How can you get that information?

    A. by enabling Solaris Auditing
    B. by using the ppriv command
    C. by creating the file /etc/priv_debug
    D. by adding an audit.debug entry in /etc/syslog.conf

  • Question 32:

    A system administrator at home wants secure communication with the company's network through a VPN. Which step would accomplish this?

    A. Use ssh with port forwarding.
    B. Configure IP Filter on the client.
    C. Configure IPsec in tunnel mode.
    D. Configure IPsec in transport mode.

  • Question 33:

    Which option is used in /etc/vfstab to limit the size of a tmpfs file system to 512MB to prevent a memory denial of service (DoS)?

    A. size=512m
    B. maxsize=512
    C. minsize=512
    D. swapfs=512mb

  • Question 34:

    The Internet Key Exchange (IKE) protocol is defined in RFC 2409. What describes what this protocol is responsible for implementing?

    A. exchange of IPsec keys between hosts
    B. used for Multi-Data Transmission (MDT)
    C. exchange of SSH public keys between hosts
    D. exchange of SSH private keys between hosts
    E. automating key exchange for all network services

  • Question 35:

    The Key Distribution Center (KDC) is a central part of the Kerberos authentication system. How should the system running the KDC be configured?

    A. It should be a hardened, minimized system.
    B. It should be a hardened, non-networked system.
    C. The KDC implementation employs cryptography and can therefore run securely on an ordinary multi-user system.
    D. For improved security, users must log in to the KDC before authenticating themselves, so it must be a multiuser system.

  • Question 36:

    During the configuration of a system to install signed patches, you discover that the system does not have the required Sun Microsystems Enterprise Service Patch Management public key installed. Which is true?

    A. The public key can be downloaded from Sun's web site.
    B. The public key must be generated using the keytool command.
    C. The public key is NOT required, as the Root CA will be used to verify the patch if it is NOT available.
    D. The public key must be requested from Sun, and transfered over a secure connection so its authenticity can be confirmed.

  • Question 37:

    After a recent audit, you have been requested to minimize an existing Solaris system which runs a third party database application. Which two should you do before starting to minimize the system? (Choose two.)

    A. Back up the system.
    B. Remove any unneeded patches.
    C. Install the SUNWrnet metacluster.
    D. Remove any unneeded packages.
    E. Confirm with the vendor of the database software that they support minimization.

  • Question 38:

    You have taken over administration of a web server which is connected to the Internet. The server was installed using a minimized installation of Solaris, and has been hardened using the Solaris Security Toolkit. Which statement is correct?

    A. smpatch can be used to apply relevant patches.
    B. Solaris Security Toolkit will apply new patches as required.
    C. Only the kernel patch is required, because it has been minimized.
    D. Regular patching of the system is NOT required, because it has been hardened.

  • Question 39:

    Traditionally, UNIX systems have allowed users to hard-link files of other users. Your company's current policy disallows this, and you need to implement this change. In the Solaris 10 OS, there is a special privilege that controls this particular capability: the file_link_any privilege. Which statement is true?

    A. You can remove the privilege from all users by editing /etc/default/login.
    B. You can remove the privilege from all users by assigning them a profile shell.
    C. You can NOT remove the privilege from the user's privilege sets because it is a basic privilege.
    D. You can remove the privilege from all users by editing /etc/security/policy.conf.

  • Question 40:

    Which two tasks does the Key Distribution Center (KDC) perform? (Choose two.)

    A. issues service tickets
    B. authenticates services
    C. issues ticket-granting-tickets
    D. validates passwords sent in clear text
    E. provides private sessions to services

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Oracle exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 1Z0-881 exam preparations and Oracle certification application, do not hesitate to visit our Vcedump.com to find your solutions here.