[Free] 2017(Jan) EnsurePass Pass4sure Oracle 1z0-881 Dumps with VCE and PDF 1-10

Ensurepass.com : Ensure you pass the IT Exams
2017 Jan Oracle Official New Released 1z0-881
100% Free Download! 100% Pass Guaranteed!

Oracle Solaris 10 Security Administrator Certified Expert Exam

Question No: 1 – (Topic 1)

A security administrator has a requirement to deploy the Solaris Security Toolkit onto all Solaris servers in the department. In this environment, there are a variety of platforms and operating system versions deployed. Onto which two platforms and operating system combinations can the Solaris Security Toolkit be deployed in a supported configuration? (Choose two.)

  1. x86, Solaris 2.4

  2. x64, Solaris 9

  3. x86, Solaris 10

  4. SPARC, Solaris 2.6

  5. SPARC, Solaris 8

Answer: C,E

Question No: 2 – (Topic 1)

The company security policy now requires very detailed auditing of all actions. This includes capturing all executed commands together with their arguments and the environment variables. After activating auditing on all Solaris 10 systems, the security auditor complains about having to check the audit trail on each individual host. He asks for a central place to capture all audit trails. Using standard Solaris 10 security features, which is a solution to this problem?

  1. Configure auditd to send email with the events.

  2. Configure auditd to send the output using syslog to a central loghost.

  3. Configure auditd to store the audit trail using NFS on a central server.

  4. Configure auditd to store the audit trail using LDAP in a central directory.

Answer: C

Question No: 3 – (Topic 1)

Which two tasks does the Key Distribution Center (KDC) perform? (Choose two.)

  1. issues service tickets

  2. authenticates services

  3. issues ticket-granting-tickets

  4. validates passwords sent in clear text

  5. provides private sessions to services

Answer: A,C

Question No: 4 – (Topic 1)


jupiter:$md5,rounds=2006$2amXesSj5$$kCF48vfPsHDjlKNXeEw7V.:12210:::::: What is the characteristic of this /etc/shadow entry?

  1. User jupiter uses the md5 hash, with salt 2006$2amXesSj5$, and with the encrypted password $kCF48vfPsHDjlKNXeEw7V.

  2. User jupiter uses the 2a hash, with 2006 iterations of the hash, with salt 2amXesSj5, and with the encrypted password kCF48vfPsHDjlKNXeEw7V.

  3. User jupiter uses the md5 hash, with 2006 iterations of the hash, with salt 2amXesSj5, and with the encrypted password kCF48vfPsHDjlKNXeEw7V.

  4. User jupiter uses the md5 hash, with 2006 iterations of the hash, with no salt, and with the encrypted password $rQmXesSj5$$kCF48vfPsHDjlKNXeEw7V.

Answer: C

Question No: 5 – (Topic 1)

A security administrator is required to validate the integrity of a set of operating system files on a number of Solaris systems. The administrator decides to use the Solaris Fingerprint Database to validate configuration and data files as well as binaries and libraries. What command, available by default in Solaris 10, will help the security administrator collect the necessary information that will be used with the Solaris Fingerprint Database?

  1. md5sum

  2. digest

  3. encrypt

  4. elfsign

  5. cryptoadm

Answer: B

Question No: 6 – (Topic 1)

You are configuring a new system to be used as an intranet web server. After you have installed the minimal amount of packages and patched the system, you added the appropriate web server packages (SUNWapch2r and SUNWapch2u). By default, the web server daemon will be started using UID webservd and the basic privilege set. To comply with the company#39;s policy of least privilege, you need to minimize the privileges that the web server will have. What will you modify to specify the privileges that the web service will run with?

  1. the PRIV_DEFAULT setting in /etc/security/policy.conf

  2. the defaultpriv setting of webserverd in /etc/user_attr

  3. the privileges property of the web service in the SMF repository

  4. the privs property of the web service in /etc/security/exec_attr

Answer: C

Question No: 7 – (Topic 1)

After a recent audit, you have been requested to minimize an existing Solaris system which runs a third party database application. Which two should you do before starting to minimize the system? (Choose two.)

  1. Back up the system.

  2. Remove any unneeded patches.

  3. Install the SUNWrnet metacluster.

  4. Remove any unneeded packages.

  5. Confirm with the vendor of the database software that they support minimization.

Answer: A,E

Question No: 8 – (Topic 1)

Click the Exhibit button.

Ensurepass 2017 PDF and VCE

You maintain a minimized and hardened web server. The exhibit shows the current credentials that the web server runs with. You receive a complaint about the fact that a newly installed webbased application does not function. This application is based on a

/bin/ksh cgi-bin script. What setting prevents this cgi-bin program from working?

  1. The system might NOT have /bin/ksh installed.

  2. The server is NOT allowed to call the exec system call.

  3. The server should run with uid=0 to run cgi-bin scripts.

  4. Some of the libraries needed by /bin/ksh are NOT present in the webserver#39;s chroot environment.

Answer: B

Question No: 9 – (Topic 1)

One of the operators of the mainframe group was moved to the UNIX group and tasked to activate and configure password history. For every user, the last 10 passwords should be remembered in the history. In what file is the size of the password history configured?

  1. /etc/shadow

  2. /etc/pam.conf

  3. /etc/default/passwd

  4. /etc/security/policy.conf

Answer: C

Question No: 10 – (Topic 1)

Within the context of file integrity, rules can be implemented to change the scope of the Basic Audit and Report Tool (BART) manifest. Given the rule file: /home/bert/docs *.og[dt] CHECK all IGNORE mtime Which two statements are valid? (Choose two.)

  1. All files on the system will be checked.

  2. The last modification time of all checked files will not be checked.

  3. Key words such as CHECK and IGNORE can NOT be used in a rule file.

  4. Only files with extension .ogt and .ogd in the directory /home/bert/docs will be checked.

  5. All files on the system will be checked, except for files with extensions .ogt and .ogd in the directory /home/bert/docs.

Answer: B,D

100% Ensurepass Free Download!
Download Free Demo:1z0-881 Demo PDF
100% Ensurepass Free Guaranteed!
Download 2017 EnsurePass 1z0-881 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 EnsurePass IT Certification PDF and VCE

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.