無料で使える202-450サンプル問題で100%カバー率のリアル試験問題(更新された120問あります) [Q28-Q47]

Share

無料で使える202-450サンプル問題で100%カバー率のリアル試験問題(更新された120問あります)

今すぐダウンロード!リアルLpi 202-450試験問題集テストエンジン試験問題


LPI 202-450試験の対象となるには、候補者はすでにLPI 201試験に合格している必要があります。また、プロの環境でLinuxベースのシステムを操作する少なくとも1年の経験があるはずです。 LPI 201とLPI 202-450試験の両方に合格した候補者には、LPIC-2認定が授与されます。これは、高度なLinuxシステム管理スキルのベンチマークとして世界中で認識されています。


Lpi 202-450試験は、Linuxシステム管理者向けのプロフェッショナルレベルの認定試験であり、LPIC-2認定の2部で、Linuxプロフェッショナル向けの上級レベルの認定です。この試験は、ファイルシステムとデバイス、ネットワーク構成、高度なストレージデバイス管理、システムメンテナンス、ドメインネームサーバー(DNS)、Webサービス、ファイル共有、およびネットワーククライアント管理など、さまざまな分野での候補者の知識とスキルを測定します。


LPIC-2試験202、パート2の2、バージョン4.5は、Linux管理に関する候補者の知識をテストするベンダー中立認証試験です。この試験は、候補者がLinuxシステムを専門的かつ効率的な方法で構成および管理するために必要なスキルと知識を確保するように設計されています。この試験は世界的に認識されており、Linuxの専門家にとって貴重な認定です。

 

質問 # 28
The Samba configuration file contains the following lines:

A workstation is on the wired network with an IP address of 192.168.1.177 but is unable to access the Samba server. A wireless laptop with an IP address 192.168.2.93 can access the Samba server. Additional trouble shooting shows that almost every machine on the wired network is unable to access the Samba server.
Which alternate host allow declaration will permit wired workstations to connect to the Samba server without denying access to anyone else?

  • A. host allow = 192.168.1.1-255
  • B. host allow = 192.168.1.100192.168.2.200localhost
  • C. host deny = 192.168.2.200/255.255.255.0192.168.2.31localhost
  • D. host allow = 192.168.1.0/255.255.255.0192.168.2.0/255.255.255.0 localhost
  • E. host deny = 192.168.1.100/255.255.255.0192.168.2.31localhost

正解:D

解説:
Explanation
The host allow option in the smb.conf file specifies the hosts or networks that are allowed to access the Samba server. The hosts can be specified by name, IP address, or network address with a netmask. The host allow option can also include the special name localhost, which refers to the local machine. The host allow option can be overridden by the host deny option, which specifies the hosts or networks that are denied access to the Samba server. The host deny option has a higher priority than the host allow option.
In this question, the host allow option is set to 192.168.1.100 192.168.2.0/24 localhost, which means that only the host with the IP address 192.168.1.100, the hosts on the network 192.168.2.0/24 (from 192.168.2.1 to
192.168.2.254), and the local machine can access the Samba server. This explains why a wireless laptop with an IP address 192.168.2.93 can access the Samba server, but a workstation on the wired network with an IP address 192.168.1.177 cannot. Almost every machine on the wired network is unable to access the Samba server because they are not included in the host allow option.
To fix this problem, the host allow option should be changed to include the entire wired network, which is assumed to be 192.168.1.0/24 (from 192.168.1.1 to 192.168.1.254). This can be done by using the network address and the netmask, or by using a range of IP addresses. The host allow option should also keep the wireless network and the localhost in the list, so that the existing access is not denied. Therefore, the correct answer is E. host allow = 192.168.1.0/255.255.255.0 192.168.2.0/255.255.255.0 localhost. This will allow any host on either network, or the local machine, to access the Samba server, without denying access to anyone else.


質問 # 29
In a BIND zone file, what does the @ character indicate?

  • A. It's the name of the zone as defined in the zone statement in named.conf
  • B. It's the fully qualified host name of the DNS server
  • C. It's an alias for the e-mail address of the zone master
  • D. It's used to create an alias between two CNAME entries

正解:A


質問 # 30
Which of these tools provides DNS information in the following format?

  • A. host
  • B. nslookup
  • C. named-checkconf
  • D. dig
  • E. named-checkzone

正解:A


質問 # 31
Which Apache HTTPD directive enables HTTPS protocol support?

  • A. HTTPSEngine on
  • B. HTTPSEnable on
  • C. SSLEngine on
  • D. SSLEnable on
  • E. StartTLS on

正解:C


質問 # 32
Which FTP names are recognized as anonymous users in vsftp when the option anonymous_enable is set to yes in the configuration files? (Choose two.)

  • A. guest
  • B. ftp
  • C. nobody
  • D. In the described configuration, any username which neither belongs to an existing user nor has another special meaning is treated as anonymous user.
  • E. anonymous

正解:B、E

解説:
Explanation
The FTP names that are recognized as anonymous users in vsftpd when the option anonymous_enable is set to yes in the configuration file are anonymous and ftp. These are the default names that vsftpd accepts as valid anonymous users, and they can be used interchangeably. The anonymous user does not need to enter a password, but can optionally enter an email address as a password. The anonymous user has limited permissions and can only access the directory specified by the anon_root directive, which is usually /var/ftp or
/srv/ftp. The anonymous user can download files from the server, but cannot upload or modify files, unless the anon_upload_enable and anon_mkdir_write_enable directives are also set to yes.
The other options are not recognized as anonymous users in vsftpd. Option C is incorrect, because vsftpd will reject any username that does not belong to an existing user or an anonymous user. Option D is incorrect, because nobody is a system user that has no permissions and is not related to FTP. Option E is incorrect, because guest is not a valid FTP name, unless the guest_enable directive is set to yes, which will make all non-anonymous users log in as the guest_username, which is usually ftp.
References:
vsftpd.conf - config file for vsftpd
How To Set Up vsftpd for Anonymous Downloads on Ubuntu 16.04
How to Configure vsftpd FTP Server on CentOS 8


質問 # 33
In order to protect a directory on an Apache HTTPD web server with a password, this configuration was added to an .htaccessfile in the respective directory:

Furthermore, a file /var/www/dir/ .htpasswdwas created with the following content:
usera:S3cr3t
Given that all these files were correctly processed by the web server processes, which of the following statements is true about requests to the directory?

  • A. The browser prompts the visitor for a username and password but logins for userado not seem to work
  • B. The web server delivers the content of the directory without requesting authentication
  • C. The user useracan access the site using the password s3cr3t
  • D. Requests are answered with HTTP error code 500 (Internal Server Error)
  • E. Accessing the directory as useraraises HTTP error code 442 (User Not Existent)

正解:C


質問 # 34
When using mod_authz_core, which of the following strings can be used as an argument to Require in an Apache HTTPD configuration file to specify the authentication provider? (Choose three.)

  • A. all
  • B. expr
  • C. regex
  • D. method
  • E. header

正解:A、B、D

解説:
Explanation/Reference:
Reference: https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html


質問 # 35
In a BIND zone file, what does the @ character indicate?

  • A. It's the name of the zone as defined in the zone statement in named.conf
  • B. It's the fully qualified host name of the DNS server
  • C. It's an alias for the e-mail address of the zone master
  • D. It's used to create an alias between two CNAME entries

正解:A

解説:
Explanation
In a BIND zone file, the @ character indicates the name of the zone as defined in the zone statement in named.conf. This is also known as the current origin of the zone file. The @ character is a shortcut that allows the zone file to refer to the zone name without typing it fully. For example, if the zone name is example.com, then the @ character can be used instead of example.com. in the zone file. This can save space and avoid typos123 References:
LPIC-2 Overview
LPIC-2 202-450
What's the meaning of '@' in a DNS zone file? - Server Fault


質問 # 36
Which statements about the Alias and Redirect directives in Apache HTTPD's configuration file are true? (Choose two.)

  • A. Redirect is handled on the client side
  • B. Alias is not a valid configuration directive
  • C. Redirect works with regular expressions
  • D. Alias is handled on the server side
  • E. Alias can only reference files under DocumentRoot

正解:A、D


質問 # 37
The program vsftpd, running in a chroot jail, gives the following error:

Which of the following actions would fix the error?

  • A. Run the program using the command chrootand the option--static_libs
  • B. The file /etc/ld.so.confin the root filesystem must contain the path to the appropriate libdirectory in the chroot jail
  • C. Create a symbolic link that points to the required library outside the chroot jail
  • D. Copy the required library to the appropriate libdirectory in the chroot jail

正解:D


質問 # 38
There is a restricted area in a site hosted by Apache HTTPD, which requires users to authenticate against the file /srv/www/security/site*passwd.
Which command is used to CHANGE the password of existing users, without losing data, when Basic authentication is being used?

  • A. htpasswd /srv/www/security/site*passwd user
  • B. htpasswd -n /srv/www/security/site*passwd user
  • C. htpasswd -c /srv/www/security/site*passwd user
  • D. htpasswd -D /srv/www/security/site*passwd user

正解:A

解説:
Explanation
The htpasswd command is used to create and update user files for basic authentication of HTTP users. The command has several options, but the most relevant ones for this question are:
-c: This option creates a new file and overwrites it if it already exists. This is not suitable for changing the password of existing users, as it would erase the previous data.
-n: This option displays the results on standard output rather than updating a file. This is useful for generating password records for other types of data stores, but not for modifying an existing file.
-D: This option deletes the specified user from the file. This is not what the question asks for, as it wants to change the password, not remove the user.
-b: This option uses batch mode, which means getting the password from the command line rather than prompting for it. This option is not mentioned in the question, and it is not recommended for security reasons.
Therefore, the correct option is B, which uses the default syntax of htpasswd to change the password of an existing user in the specified file. The command will prompt for the new password and update the file accordingly.
References:
htpasswd - Manage user files for basic authentication
How to Create and Use .htpasswd
Unlocking htpasswd in Linux: Comprehensive Guide with Examples


質問 # 39
Which of the following types of IPv6 address assignments does DHCPv6 support? (Choose three.)

  • A. Assignments of anonymous IPv6 addresses whose assignment is not logged by the DHCPv6 server.
  • B. Assignments of normal IPv6 addresses that can be renewed.
  • C. Assignments of temporary IPv6 addresses that cannot be renewed.
  • D. Assignments of blacklisted IPv6 addresses that should no longer be used.
  • E. Assignments of IPv6 prefixes that can be used for routing or further assignments.

正解:B、C、E


質問 # 40
How must Samba be configured such that it can check CIFS passwords against those found in /etc/passwd and
/etc/shadow?

  • A. It is not possible for Samba to use /etc/passwd and /etc/shadow directly
  • B. Set the parameters "encrypt passwords = yes", "password file = /etc/passwd" and "password algorithm = crypt"
  • C. Set the parameters "encrypt passwords = yes" and "password file = /etc/passwd"
  • D. Delete the smbpasswd file and create a symbolic link to the passwd and shadow file
  • E. Run smbpasswd to convert /etc/passwd and /etc/shadow to a Samba password file

正解:A


質問 # 41
Which of the following PAM modules sets and unsets environment variables?

  • A. pam-env
  • B. pam_export
  • C. pam-vars
  • D. pam_set
  • E. pam_shell

正解:A


質問 # 42
Which Postfix command can be used to rebuild all of the alias database files with a single invocation and without the need for any command line arguments?

  • A. postmapbuild
  • B. makealiases
  • C. postalias
  • D. newaliases

正解:D

解説:
Explanation
The newaliases command is a Postfix command that can be used to rebuild all of the alias database files with a single invocation and without the need for any command line arguments. The newaliases command is equivalent to running the postalias command on each file specified by the alias_database parameter in the Postfix main.cf configuration file. The newaliases command reads the text files that contain the alias definitions and creates the indexed files in dbm or db format that are used for fast lookup by the mail system.
The newaliases command should be executed whenever the alias database is changed, in order to update the indexed files. For example:
newaliases
The other commands are not equivalent to the newaliases command. The makealiases command is not a valid Postfix command. The postalias command can be used to rebuild a single alias database file, but it requires the file name as an argument. The postmapbuild command is not a valid Postfix command.
References:
LPIC-2 Exam 202 Objectives, Objective 205.3: Managing a postfix server
Postfix Basic Configuration, Postfix Documentation
Postfix manual - aliases(5), Postfix Documentation
Postfix manual - newaliases(1), Postfix Documentation
Postfix manual - postalias(1), Postfix Documentation


質問 # 43
In which CIFS share must printer drivers be placed to allow Point'n'Print driver deployment on Windows?

  • A. winx64drv$
  • B. The name of the share is specified in the option print driver share within each printable share in smb.conf
  • C. NETLOGON
  • D. print$
  • E. pnpdrivers$

正解:D


質問 # 44
Which of the statements below are correct regarding the following commands, which are executed on a Linux router? (Choose two.)

  • A. The rules suppress any automatic configuration through router advertisements or DHCPv6
  • B. The rules disable packet forwarding because network nodes always use addresses from fe80::/64 to identify routers in their routing tables
  • C. Both ip6tables commands complete without an error message or warning
  • D. ip6tables returns an error for the second command because the affected network is already part of another rule
  • E. Packets with source or destination addresses from fe80::/64 will never occur in the FORWARD chain

正解:A、C


質問 # 45
What information can be found in the file specified by the status parameter in an OpenVPN server configuration file? (Choose two.)

  • A. Errors and warnings generated by the openvpn daemon
  • B. Routing information
  • C. A history of all clients who have connected at some point
  • D. Statistical information regarding the currently running openvpn daemon
  • E. A list of currently connected clients

正解:B、E

解説:
Explanation
The status parameter in an OpenVPN server configuration file specifies the name of a file where OpenVPN writes information about the current status of the VPN tunnel, such as the time, bytes sent and received, and the IP address and port of each connected client. This file can be used to monitor the VPN activity and troubleshoot any issues. The file does not contain any information about errors and warnings generated by the openvpn daemon, as those are written to the log file specified by the log or log-append parameter. The file also does not contain any historical information about the clients who have connected at some point, as it only shows the current state of the VPN tunnel.
https://openvpn.net/community-resources/reference-manual-for-openvpn-2-4/
https://openvpn-status.readthedocs.io/en/latest/api.html


質問 # 46
Which FTP names are recognized as anonymous users in vsftp when the option anonymous_enable is set to yes in the configuration files? (Choose two.)

  • A. guest
  • B. ftp
  • C. nobody
  • D. In the described configuration, any username which neither belongs to an existing user nor has another special meaning is treated as anonymous user.
  • E. anonymous

正解:B、E


質問 # 47
......

最新202-450テスト問題集を試そう!更新されたLpi試験が合格できます:https://jp.fast2test.com/202-450-premium-file.html

検証済み!202-450問題集と解答で202-450テストエンジン正確解答付き:https://drive.google.com/open?id=1SvGWoCLrKAcgj4u8GshPON0wVqktFWra


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어