• Home
  • Articles
  • Lpi Exam 2024 202-450 Dumps Updated Questions UPDATED May-2024 [Q16-Q39]

Lpi Exam 2024 202-450 Dumps Updated Questions UPDATED May-2024 [Q16-Q39]

Share

Lpi Exam 2024 202-450 Dumps Updated Questions UPDATED May-2024

Get The Most Updated 202-450 Dumps To LPIC-2 Certified Linux Engineer Certification

NEW QUESTION # 16
Which of the following PAM modules sets and unsets environment variables?

  • A. pam_set
  • B. pam-vars
  • C. pam_export
  • D. pam_shell
  • E. pam-env

Answer: E


NEW QUESTION # 17
Which Postfix command can be used to rebuild all of the alias database files with a single invocation and without the need for any command line arguments?

  • A. newaliases
  • B. postalias
  • C. postmapbuild
  • D. makealiases

Answer: A


NEW QUESTION # 18
What word is missing from the following excerpt of a named.conf file?

  • A. net
  • B. list
  • C. networks
  • D. group
  • E. acl

Answer: E


NEW QUESTION # 19
Which option in named.conf specifies which host are permitted to ask for domain name information from the server?

  • A. allow-query
  • B. allowed-hosts
  • C. accept-query
  • D. query-group
  • E. permit-query

Answer: A

Explanation:
Explanation
The option in named.conf that specifies which hosts are permitted to ask for domain name information from the server is allow-query. The allow-query option is used to define an access control list (ACL) that matches the source IP address of the DNS query. The ACL can be a list of IP addresses, networks, keywords, or predefined ACL names. The default value of allow-query is any, which means that any host can query the server. However, this can pose a security risk, as the server may be exposed to unwanted or malicious queries.
Therefore, it is recommended to restrict the allow-query option to only the hosts that need to access the server, such as the local network or trusted clients. For example, the following option allows only the hosts in the
192.168.1.0/24 network and the localhost to query the server:
allow-query { 192.168.1.0/24; localhost; };
The other options are not valid in named.conf. allowed-hosts, accept-query, permit-query, and query-group are not recognized keywords by BIND.
References:
LPIC-2 exam 202 objectives, topic 208.1, "Implementing a web server"
BIND 9 Administrator Reference Manual, chapter 6, "Access Control Lists and TSIG" How to Configure DNS Server with TSIG on CentOS 8


NEW QUESTION # 20
The following Apache HTTPD configuration has been set up to create a virtual host available at www.example.com and www2.example.com:

Even though Apache HTTPD correctly processed the configuration file, requests to both names are not handled correctly. What should be changed in order to ensure correct operations?

  • A. Both virtual host names have to be placed as comma separated values in one ServerNamedeclaration.
  • B. The configuration must be split into two VirtualHostsections since each virtual host may only have one name.
  • C. The port mentioned in opening VirtualHosttag has to be appended to the ServerNamedeclaration's values.
  • D. Both virtual host names have to be mentioned in the opening VirtualHosttag.
  • E. Only one Server name declaration may exist, but additional names can be declared in ServerAlias options.

Answer: A


NEW QUESTION # 21
Which command is used to configure which file systems a NFS server makes available to clients?

  • A. telinit
  • B. mkfs.nfs
  • C. nfsservct1
  • D. mount
  • E. exportfs

Answer: E


NEW QUESTION # 22
What is the path to the global Postfix configuration file? (Specify the full name of the file, including path.)

Answer:

Explanation:
/etc/postfix/main.cf
Explanation:
The global Postfix configuration file is located at /etc/postfix/main.cf. This file contains the main parameters that control the behavior of the Postfix mail server. It is a plain text file that consists of parameter-value pairs, comments, and blank lines. The syntax of the file is as follows:
parameter = value
commentThe parameter names are case-insensitive, and the values can be enclosed in quotes if they contain spaces or special characters. The values can also reference other parameters by using the $parameter syntax.
The file can be edited manually or by using the postconf command. The postconf command can also be used to display the current values of the parameters, or to set new values. For example:
postconf -d # display default values of all parameters postconf -n # display non-default values of all parameters postconf -e 'parameter = value' # set a new value for a parameter The main.cf file is read by Postfix when it starts or reloads. To reload Postfix after making changes to the file, use the command:
postfix reload
References:
LPIC-2 Exam 202 Objectives, Objective 205.3: Managing a postfix server
Postfix Basic Configuration, Postfix Documentation
Postfix Configuration Parameters, Postfix Documentation
How do I change postfix configuration after installing it?, Server Fault What are the Configuration Files for Postfix, The Geek Search


NEW QUESTION # 23
What is the name of the Dovecot configuration variable that specifies the location of user mail?

  • A. maildir
  • B. mbox
  • C. user_dir
  • D. mail_location
  • E. user_mail_dir

Answer: D


NEW QUESTION # 24
A company is transitioning to a new DNS domain name and wants to accept e-mail for both domains for all of its users on a Postfix server.
Which configuration option should be updated to accomplish this?

  • A. mylocations
  • B. myhosts
  • C. mydestination
  • D. mydomain
  • E. mydomains

Answer: C


NEW QUESTION # 25
In order to export /usr and /bin via NFSv4, /exports was created and contains working bind mounts to /usr and
/bin. The following lines are added to /etc/exports on the NFC server:

After running
Explanation
mount-tnfsv4 server://mnt
of an NFC-Client, it is observed that /mnt contains the content of the server's /usr directory instead of the content of the NFSv4 foot folder.
Which option in /etc/exports has to be changed or removed in order to make the NFSv4 root folder appear when mounting the highest level of the server? (Specify ONLY the option name without any values or parameters.)

Answer:

Explanation:
fsid
The fsid option in /etc/exports is used to specify a unique identifier for each exported filesystem.
For NFSv4, there is a distinguished filesystem which is the root of all exported filesystems, and it is specified with fsid=root or fsid=0, both of which mean the same thing. If this option is used for the /exports directory, then it will be the root of the NFSv4 hierarchy, and any subdirectories under it will be mounted relative to it. This means that when mounting the highest level of the server, the client will see the content of /exports instead of the NFSv4 root folder. To avoid this, the fsid option should be removed or changed to a different value for the /exports directory, so that it is not the NFSv4 root. The other options in /etc/exports are not relevant for this question.


NEW QUESTION # 26
Which of these tools provides DNS information in the following format?

  • A. dig
  • B. named-checkconf
  • C. nslookup
  • D. host
  • E. named-checkzone

Answer: C


NEW QUESTION # 27
What command creates a SSH key pair? (Specify ONLY the command without any path or parameters)

Answer:

Explanation:
ssh-keygen
Explanation:
The command that creates a SSH key pair is ssh-keygen. This command generates a public and a private key file that can be used for SSH authentication. The command can take various options to specify the algorithm, the file name, the passphrase, and other parameters for the key pair. For more information, see the web search results below or the man page of ssh-keygen.
How to Use ssh-keygen to Generate a New SSH Key?


NEW QUESTION # 28
Which of these tools provides DNS information in the following format?

  • A. dig
  • B. host
  • C. named-checkconf
  • D. nslookup
  • E. named-checkzone

Answer: B


NEW QUESTION # 29
According to this LDIF excerpt, which organizational unit is Robert Smith part of? (Specify only the organizational unit.)

Answer:

Explanation:
people


NEW QUESTION # 30
Which http_access directive for Squid allows users in the ACL named sales_net to only access the Internet at times specified in the time_acl named sales_time?

  • A. http_access sales_net sales_time
  • B. http_access deny sales_time sales_net
  • C. http_access allow sales_net sales_time
  • D. allow http_access sales_net sales_time
  • E. http_access allow sales_net and sales-time

Answer: C

Explanation:
Explanation
The http_access directive for Squid allows or denies access to the web resources based on defined access control lists (ACLs). The syntax of the http_access directive is:
http_access allow|deny [!]aclname ...
The directive takes one or more ACL names as arguments, separated by spaces. The first argument is either allow or deny, indicating the action to be taken if the ACLs match. The optional ! character before an ACL name negates the result of that ACL.
To allow users in the ACL named sales_net to only access the Internet at times specified in the time_acl named sales_time, the correct http_access directive is:
http_access allow sales_net sales_time
This directive means that if the client IP address matches the sales_net ACL and the request time matches the sales_time ACL, then the access is allowed. Otherwise, the access is denied or the next http_access directive is evaluated.


NEW QUESTION # 31
On a Linux router, packet forwarding for IPv4 has been enabled. After a reboot, the machine no longer forwards IP packets from other hosts. The command:
echo 1 > /proc/sys/net/ipv4/ip_forward
temporarily resolves this issue.
Which one of the following options is the best way to ensure this setting is saved across system restarts?

  • A. In /etc/sysct1.conf change net.ipv4.ip_forward to 1
  • B. Add echo 1 > /proc/sys/net/ipv4/ip_forward to any user login script
  • C. Add echo 1 > /proc/sys/net/ipv4/ip_forward to the root user login script
  • D. In /etc/sysconfig/iptables-config add ipv4.ip_forward = 1
  • E. In /etc/rc.local add net.ipv4.ip_forward = 1

Answer: A


NEW QUESTION # 32
Which of the following nmap parameters scans a target for open TCP ports? (Choose two.)

  • A. -sZ
  • B. -sS
  • C. -sO
  • D. -sU
  • E. -sT

Answer: B,E

Explanation:
Explanation
The nmap command is a network exploration and security auditing tool that can scan hosts and networks for open ports, services, operating systems, vulnerabilities, and other information. The nmap parameters that can scan a target for open TCP ports are:
-sT: This parameter performs a TCP connect scan, which establishes a complete connection to the target host by completing a TCP three-way handshake. This is the default scan type when the user does not have root privileges. The advantage of this scan is that it works on any system that supports TCP, but the disadvantage is that it is easily detectable by firewalls and intrusion detection systems.
-sS: This parameter performs a TCP SYN scan, which sends a TCP SYN packet to the target port and waits for a response. If the response is a SYN/ACK packet, the port is open. If the response is a RST packet, the port is closed. This scan does not complete the TCP three-way handshake, so it is faster and stealthier than the TCP connect scan. However, this scan requires root privileges and may not work on some systems that do not follow the TCP standard.
The other parameters are not related to TCP port scanning:
-sO: This parameter performs an IP protocol scan, which sends IP packets with the specified protocol number set in the IP header. It can be used to determine which IP protocols are supported by the target host.
-sZ: This parameter is not a valid nmap parameter and will cause an error.
-sU: This parameter performs a UDP scan, which sends a UDP packet to the target port and waits for a response. If the response is an ICMP port unreachable message, the port is closed. If the response is a UDP packet, the port is open. This scan can be used to find open UDP ports, which are often used by DNS, SNMP, DHCP, and other services.
References: LPIC-2 202 exam objectives, LPIC-2 202-450 Exam Prep: Network Configuration, Nmap Tutorial: Common Commands, Nmap Scan Types Cybersecurity | Nmap | TCP Connect Scan | Codecademy


NEW QUESTION # 33
Which of the following actions synchronizes UNIX passwords with the Samba passwords when the encrypted Samba password is changed using smbpasswd?

  • A. Run winbind -sync, to synchronize the passwords.
  • B. There are no actions to accomplish this since is not possible.
  • C. Run netvamp regularly, to convert the passwords.
  • D. Add unix password sync = yes to smb.conf
  • E. Add smb unix password = sync to smb.conf

Answer: D


NEW QUESTION # 34
A company is transitioning to a new DNS domain name and wants to accept e-mail for both domains for all of its users on a Postfix server.
Which configuration option should be updated to accomplish this?

  • A. mylocations
  • B. myhosts
  • C. mydestination
  • D. mydomain
  • E. mydomains

Answer: C

Explanation:
Explanation
The mydestination parameter in the Postfix main.cf configuration file specifies the list of domains that are delivered via the $local_transport mail delivery transport. This means that Postfix will accept mail for those domains and deliver it to local mailboxes. To accept mail for both the old and new domain names, the mydestination parameter should include both domains, separated by commas. For example:
mydestination = olddomain.com, newdomain.com, localhost
This will allow Postfix to accept mail for [email protected] and [email protected] and deliver it to the same local user mailbox.
References:
LPIC-2 Exam 202 Objectives, Objective 205.3: Managing a postfix server
Postfix Basic Configuration, Postfix Documentation
Postfix Configuration Parameters: mydestination, Postfix Documentation
How to configure Postfix to receive mail for multiple domains, Server Fault


NEW QUESTION # 35
Which configuration parameter on a Postfix server modifies only the sender address and not the recipient address?

  • A. alias_maps
  • B. sender_rewrite_maps
  • C. alias_rewrite_maps
  • D. sender_canonical_maps

Answer: D


NEW QUESTION # 36
How are PAM modules organized and stored?

  • A. As dynamically linked binaries in /usr/lib/pam/sbin/
  • B. As plain text files in /etc/security/
  • C. As Linux kernel modules within the respective sub directory of /lib/modules/
  • D. A statically linked binaries in /etc/pam.d/bin/
  • E. As shared object files within the /lib/ directory hierarchy

Answer: E

Explanation:
Explanation
PAM modules are organized and stored as shared object files within the /lib/ directory hierarchy. A shared object file is a file that contains executable code and data that can be loaded into memory and used by one or more programs. This allows PAM modules to be dynamically loaded and unloaded by the PAM library as needed, without requiring recompilation or relinking of the programs that use them. The /lib/ directory hierarchy contains subdirectories for different architectures and operating systems, such as
/lib/x86_64-linux-gnu/ or /lib64/. The PAM modules are usually located in a subdirectory named security, such as /lib/x86_64-linux-gnu/security/ or /lib64/security/. The PAM modules have names that start with pam_ and end with .so, such as pam_unix.so or pam_cracklib.so12.
References:
PAM Modules: A section from the Linux-PAM System Administrators' Guide that explains what PAM modules are, how they are named, and where they are located.
An introduction to Pluggable Authentication Modules (PAM) in Linux: An article from Red Hat that introduces the concept and usage of PAM in Linux, which includes a description of PAM modules and their location.


NEW QUESTION # 37
The content of which local file has to be transmitted to a remote SSH server in order to be able to log into the remote server using SSH keys?

  • A. ~/.ssh/id_rsa.pub
  • B. ~/.ssh/authorized_keys
  • C. ~./ssh/known_hosts
  • D. ~/.ssh/config
  • E. ~/.ssh/id_rsa

Answer: B

Explanation:
Explanation/Reference:
Reference: https://www.digitalocean.com/community/tutorials/ssh-essentials-working-with-ssh-servers- clients-and-keys


NEW QUESTION # 38
Which Linux user is used by vsftpd to perform file system operations for anonymous FTP users?

  • A. The Linux user that owns the root FTP directory served by vsftpd
  • B. The Linux user specified in the configuration option ftp_username
  • C. The Linux user which runs the vsftpd process
  • D. The Linux user root, but vsftpd grants access to anonymous users only to globally read-/writeable files
  • E. The Linux user with the same user name that was used to anonymously log into the FTP server

Answer: B


NEW QUESTION # 39
......


Preparing for the Lpi 202-450 certification exam requires a solid understanding of Linux system administration concepts and hands-on experience. Candidates should have a thorough understanding of Linux file systems and storage, networking, security, and advanced system administration. They should also be familiar with the command-line interface and have experience working with Linux servers.

 

Lpi Certified 202-450  Dumps Questions Valid 202-450 Materials: https://www.passleadervce.com/LPIC-2-Certified-Linux-Engineer/reliable-202-450-exam-learning-guide.html

Current 202-450 Exam Dumps [2024] Complete Lpi Exam Smoothly: https://drive.google.com/open?id=19RhfZOHpYcIabk5yXoWrami3QUkMBggl

Related Articles

more
Lpi 202-450 Certification Practice Exam