[2024年04月28日]202-450試験問題集で100%合格率202-450試験！ [Q56-Q76]

[2024年04月28日]202-450試験問題集で100%合格率202-450試験！

試験問題集リアルLPIC-2 Certified Linux Engineer問題集120解答を試そう！

質問 # 56
On a Linux router, packet forwarding for IPv4 has been enabled. After a reboot, the machine no longer forwards IP packets from other hosts. The command:
echo 1 > /proc/sys/net/ipv4/ip_forward
temporarily resolves this issue.
Which one of the following options is the best way to ensure this setting is saved across system restarts?

• A. Add echo 1 > /proc/sys/net/ipv4/ip_forward to any user login script
• B. In /etc/sysct1.conf change net.ipv4.ip_forward to 1
• C. In /etc/rc.local add net.ipv4.ip_forward = 1
• D. Add echo 1 > /proc/sys/net/ipv4/ip_forward to the root user login script
• E. In /etc/sysconfig/iptables-config add ipv4.ip_forward = 1

正解：B

質問 # 57
What is the standard port used by OpenVPN?

• A. 0
• B. 1
• C. 2
• D. 3

正解：C

解説：
Explanation/Reference:
Reference: https://openvpn.net/archive/openvpn-users/2006-04/msg00355.html

質問 # 58
When are Sieve filters usually applied to an email?

• A. When the email is sent to the first server by an MUA
• B. When the email is delivered to a mailbox
• C. When the email is received by an SMTP smarthost
• D. When the email is retrieved by an MUA
• E. When the email is relayed by an SMTP server

正解：B

解説：
Explanation
Sieve filters are usually applied to an email when the email is delivered to a mailbox by a mail delivery agent (MDA) or a local delivery agent (LDA). Sieve filters are scripts that can perform various actions on incoming emails, such as sorting them into folders, assigning labels, forwarding, rejecting, or discarding them. Sieve filters are executed on the server side, and they are independent of the mail user agent (MUA) or the mail access protocol. This means that the email filtering is consistent across different email clients and devices.
Sieve filters are not applied when the email is relayed by an SMTP server, received by an SMTP smarthost, sent to the first server by an MUA, or retrieved by an MUA. These are different stages of the email delivery process, but they do not involve the final delivery of the email to a mailbox.
References:
LPIC-2 Exam 202 Objectives, Objective 205.4: Managing a dovecot server
Sieve filter (advanced custom filters) | Proton
start - Sieve.Info
What is Sieve Filtering? - Knowledge Base - Pair Networks

質問 # 59
Which of the following values can be used in the OpenLDAP attribute olcBackendfor any object of the class olcBackendConfigto specify a backend? (Choose three.)

• A. xml
• B. text
• C. passwd
• D. ldap
• E. bdb

正解：B、D、E

解説：
Explanation/Reference:

質問 # 60
The program vsftpd, running in a chroot jail, gives the following error:

Which of the following actions would fix the error?

• A. Create a symbolic link that points to the required library outside the chroot jail
• B. Copy the required library to the appropriate lib directory in the chroot jail
• C. Run the program using the command chroot and the option--static_libs
• D. The file /etc/ld.so.conf in the root filesystem must contain the path to the appropriate lib directory in the chroot jail

正解：B

解説：
Explanation
The error message in the image is saying that the program vsftpd is unable to find the required shared library file. This is because the program is running in a chroot jail, which restricts the program's access to the file system. To fix this error, the required library file must be copied to the appropriate lib directory in the chroot jail. This will allow the program to access the file and run properly. References:
LPIC-2 Overview
LPIC-2 201-450
LPIC-2 202-450

質問 # 61
Which of the following statements allow the logical combinations of conditions in Sieve filters? (Choose two.)

• A. anyof
• B. noneof
• C. allof
• D. or
• E. and

正解：C、D

質問 # 62
How must Samba be configured such that it can check CIFS passwords against those found in /etc/passwd and
/etc/shadow?

• A. Delete the smbpasswd file and create a symbolic link to the passwd and shadow file
• B. It is not possible for Samba to use /etc/passwd and /etc/shadow directly
• C. Run smbpasswd to convert /etc/passwd and /etc/shadow to a Samba password file
• D. Set the parameters "encrypt passwords = yes" and "password file = /etc/passwd"
• E. Set the parameters "encrypt passwords = yes", "password file = /etc/passwd" and "password algorithm = crypt"

正解：B

質問 # 63
After the installation of Dovecot, it is observed that the dovecot processes are shown in ps ax like this:

In order to associate the processes with users and peers, the username, IP address of the peer and the connection status, which of the following options must be set?

• A. proc.all.show_status = 1 in sysctl.conf or /proc
• B. --with-linux-extprocnames for ./configure when building Dovecot
• C. process_format = "%u %I %s" in the Dovecot configuration
• D. sys.ps.allow_descriptions = 1 in sysct1.conf or /proc
• E. verbose_proctitle = yes in the Dovecot configuration

正解：E

質問 # 64
A company is transitioning to a new DNS domain name and wants to accept e-mail for both domains for all of its users on a Postfix server.
Which configuration option should be updated to accomplish this?

• A. mylocations
• B. mydestination
• C. myhosts
• D. mydomains
• E. mydomain

正解：B

解説：
Explanation
The mydestination parameter in the Postfix main.cf configuration file specifies the list of domains that are delivered via the $local_transport mail delivery transport. This means that Postfix will accept mail for those domains and deliver it to local mailboxes. To accept mail for both the old and new domain names, the mydestination parameter should include both domains, separated by commas. For example:
mydestination = olddomain.com, newdomain.com, localhost
This will allow Postfix to accept mail for [email protected] and [email protected] and deliver it to the same local user mailbox.
References:
LPIC-2 Exam 202 Objectives, Objective 205.3: Managing a postfix server
Postfix Basic Configuration, Postfix Documentation
Postfix Configuration Parameters: mydestination, Postfix Documentation
How to configure Postfix to receive mail for multiple domains, Server Fault

質問 # 65
How are PAM modules organized and stored?

• A. As shared object files within the /lib/ directory hierarchy
• B. As plain text files in /etc/security/
• C. A statically linked binaries in /etc/pam.d/bin/
• D. As Linux kernel modules within the respective sub directory of /lib/modules/
• E. As dynamically linked binaries in /usr/lib/pam/sbin/

正解：A

解説：
Explanation
PAM modules are organized and stored as shared object files within the /lib/ directory hierarchy. A shared object file is a file that contains executable code and data that can be loaded into memory and used by one or more programs. This allows PAM modules to be dynamically loaded and unloaded by the PAM library as needed, without requiring recompilation or relinking of the programs that use them. The /lib/ directory hierarchy contains subdirectories for different architectures and operating systems, such as
/lib/x86_64-linux-gnu/ or /lib64/. The PAM modules are usually located in a subdirectory named security, such as /lib/x86_64-linux-gnu/security/ or /lib64/security/. The PAM modules have names that start with pam_ and end with .so, such as pam_unix.so or pam_cracklib.so12.
References:
PAM Modules: A section from the Linux-PAM System Administrators' Guide that explains what PAM modules are, how they are named, and where they are located.
An introduction to Pluggable Authentication Modules (PAM) in Linux: An article from Red Hat that introduces the concept and usage of PAM in Linux, which includes a description of PAM modules and their location.

質問 # 66
Which Linux user is used by vsftpd to perform file system operations for anonymous FTP users?

• A. The Linux user with the same user name that was used to anonymously log into the FTP server
• B. The Linux user that owns the root FTP directory served by vsftpd
• C. The Linux user which runs the vsftpd process
• D. The Linux user specified in the configuration option ftp_username
• E. The Linux user root, but vsftpd grants access to anonymous users only to globally read-/writeable files

正解：D

質問 # 67
Given the following Squid configuration excerpt:
cache_dir ufs /var/spool/squid3/ 1024 16 256
Which of the following directories will exist directly within the directory /var/spool/squid3/? (Choose two.)

• A. A0
• B. FF
• C. 00
• D. 0F
• E. 0b

正解：C、D

解説：
Explanation
The cache_dir directive in the Squid configuration file specifies the type, location, size, and structure of the cache directory. The ufs type indicates that Squid uses the UNIX file system to store the cache files. The
/var/spool/squid3/ is the path to the cache directory. The 1024 is the size of the cache in megabytes. The 16 and 256 are the number of first-level and second-level subdirectories that Squid creates under the cache directory.
Squid uses hexadecimal numbers to name the subdirectories, from 00 to FF. Therefore, there will be 16 first-level subdirectories, named 00, 01, 02, ..., 0E, 0F. Under each first-level subdirectory, there will be 256 second-level subdirectories, named 00, 01, 02, ..., FE, FF. For example, the subdirectory
/var/spool/squid3/0F/FF will contain the cache files whose hash values end with 0FFF.
Therefore, the correct answer is A. 0F and E. 00, as they are the names of the first-level subdirectories that will exist directly within the directory /var/spool/squid3/. The other options are either invalid or second-level subdirectories that will not exist directly within the directory /var/spool/squid3/.

質問 # 68
After running ssh-keygenand accepting the default values, which of the following files are changed or created? (Choose two.)

• A. ~/.ssh/id_rsa.crt
• B. ~/.ssh/id_rsa.key
• C. ~/.ssh/id_rsa.prv
• D. ~/.ssh/id_rsa.pub
• E. ~/.ssh/id_rsa

正解：D、E

解説：
Explanation/Reference: https://www.ssh.com/ssh/keygen/

質問 # 69
When trying to reverse proxy a web server through Nginx, what keyword is missing from the following configuration sample?

• A. reverse_proxy
• B. proxy_pass
• C. proxy_reverse
• D. forward_to
• E. remote_proxy

正解：B

解説：
Explanation
In the context of configuring Nginx for reverse proxy, the proxy_pass directive is used to specify the protocol and address of a proxied server and an optional URI to which a location should be mapped. So, in the provided configuration sample, "proxy_pass" is the missing keyword that should precede "http://proxiedserver:8080;".
References:
[NGINX Docs | NGINX Reverse Proxy]: The official documentation of Nginx on how to set up a reverse proxy with Nginx.
[How To Configure Nginx as a Web Server and Reverse Proxy for Apache on One Ubuntu 20.04 Server
| DigitalOcean]: A tutorial from DigitalOcean on how to configure Nginx as a web server and reverse proxy for Apache on Ubuntu 20.04, which includes the use of the proxy_pass directive.

質問 # 70
In order to protect a directory on an Apache HTTPD web server with a password, this configuration was added to an .htaccess file in the respective directory:

Furthermore, a file /var/www/dir/ .htpasswd was created with the following content:
usera:S3cr3t
Given that all these files were correctly processed by the web server processes, which of the following statements is true about requests to the directory?

• A. The browser prompts the visitor for a username and password but logins for usera do not seem to work
• B. The user usera can access the site using the password s3cr3t
• C. The web server delivers the content of the directory without requesting authentication
• D. Accessing the directory as usera raises HTTP error code 442 (User Not Existent)
• E. Requests are answered with HTTP error code 500 (Internal Server Error)

正解：B

解説：
Explanation
The .htaccess file in the directory is configured to require a valid user. The .htpasswd file contains the username and password for usera. Therefore, usera can access the site using the password s3cr3t. References:
LPIC-2 Overview
LPIC-2 202-450
Password Protecting Your Pages with htaccess

質問 # 71
Which command is used to administer IPv6 netfilter rules?

• A. iptables6
• B. iptablesv6
• C. iptables
• D. ipv6tables
• E. ip6tables

正解：E

解説：
Explanation/Reference: https://www.centos.org/docs/5/html/5.1/Deployment_Guide/s1-ip6tables.html

質問 # 72
What is the name of the root element of the LDAP tree holding the configuration of an OpenLDAP server that is using directory based configuration?
(Specify ONLY the element's name without any additional information.)

正解：

解説：
slapd

質問 # 73
It has been discovered that the company mail server is configured as an open relay. Which of the following actions would help prevent the mail server from being used as an open relay while maintaining the possibility to receive company mails? (Choose two.)

• A. Configure netfilter to not permit port 25 traffic on the public network
• B. Configure Dovecot to support IMAP connectivity
• C. Upgrade the mailbox format from mbox to maildir
• D. Restrict Postfix to only accept e-mail for domains hosted on this server
• E. Restrict Postfix to only relay outbound SMTP from the internal network

正解：A、E

解説：
Explanation/Reference:

質問 # 74
FILL BLANK
Which OpenLDAP client command can be used to change the password for an LDAP entry? (Specify ONLY the command without any path or parameters.)

正解：

解説：
ldappasswd

質問 # 75
When using mod_authz_core, which of the following strings can be used as an argument to Require in an Apache HTTPD configuration file to specify the authentication provider?
(Choose three.)

• A. header
• B. expr
• C. regex
• D. method
• E. all

正解：B、D、E

質問 # 76
......

あなたを余裕で202-450試験合格させます！100%高合格率保証：https://www.goshiken.com/Lpi/202-450-mondaishu.html

202-450問題集本日限定！無料アクセス可能に！：https://drive.google.com/open?id=1knoFAEoRWY8LeiO__jZgptdPQF-H9Y_3