
あなたを余裕でSK0-005試験合格させます!100%試験高合格率保証 [2025]
SK0-005問題集本日限定!無料アクセスが可能に!fromFast2test
質問 # 45
A server administrator has a system requirement to install the virtual OS on bare metal hardware.
Which of the following hypervisor virtualization technologies should the administrator use to BEST meet the system requirements? (Choose two.)
- A. Type 1
- B. Type 2
- C. Clone
- D. Host
- E. Template
- F. Guest
正解:A、B
質問 # 46
An administrator is troubleshooting a performance issue with an application. The application performs many small reads and writes in its operation. The administrator determines that the underlying storage is currently configured to use a general-purpose array with RAID 5. Which of the following should the administrator consider doing in order to offer higher application performance yet still retain data protection?
- A. Move the application to an array using RAID 10.
- B. Move the application to an array using RAID 6.
- C. Move the application to an array using RAID 0.
- D. Move the application to an array using RAID 1.
正解:A
解説:
RAID 5 is efficient for read-heavy workloads but is not well-suited for applications that perform many small reads and writes due to the overhead of parity calculations. To improve performance while maintaining redundancy:
* RAID 0 (A): This would improve performance but does not offer any data protection, making it unsuitable.
* RAID 1 (B): Provides redundancy but does not enhance write performance significantly.
* RAID 6 (C): Offers better fault tolerance than RAID 5 but suffers from even higher write penalties due to double parity.
* RAID 10 (D): Combines mirroring (RAID 1) and striping (RAID 0), significantly improving both read and write performance while ensuring redundancy. This makes it the best choice for applications with high-frequency small reads/writes.
Since the administrator needs higher performance and data protection, RAID 10 is the best choice.
Reference: CompTIA Server+ SK0-005 Official Textbook, Chapter 5 - RAID Performance Considerations
質問 # 47
A technician is trying to determine the reason why a Linux server is not communicating on a network. The returned network configuration is as follows:
eth0: flags=4163<UP, BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 127.0.0.1 network 255.255.0.0 broadcast 127.0.0.1
Which of the following BEST describes what is happening?
- A. The server is configured to use DHCP, but the DHCP server is sending an incorrect MTU setting
- B. The server is configured to use DHCP, but the DHCP server is sending an incorrect subnet mask
- C. The server is configured to use DHCP on a network that does not have a DHCP server
- D. The server is configured to use DHCP on a network that has multiple scope options
正解:C
解説:
The reason why the Linux server is not communicating on a network is that it is configured to use DHCP on a network that does not have a DHCP server. DHCP (Dynamic Host Configuration Protocol) is a protocol that allows a client device to obtain an IP address and other network configuration parameters from a DHCP server automatically. However, if there is no DHCP server on the network, the client device will not be able to obtain a valid IP address and will assign itself a link-local address instead. A link-local address is an IP address that is only valid within a local network segment and cannot be used for communication outside of it. A link-local address has a prefix of 169.254/16 in IPv4 or fe80::/10 in IPv6. In this case, the Linux server has assigned itself a link-local address of 127.0.0.1, which is also known as the loopback address. The loopback address is used for testing and troubleshooting purposes and refers to the device itself. It cannot be used for communication with other devices on the network.
質問 # 48
A server administrator has configured a web server. Which of the following does the administrator need to install to make the website trusted?
- A. PKI
- B. SSL
- C. LDAP
- D. DNS
正解:A
解説:
Reference:
https://www.csoonline.com/article/3400836/what-is-pki-and-how-it-secures-just-about-everything-online.html
質問 # 49
A systems engineer is configuring a new VLAN for expansion of a campus network. The engineer configures a new DHCP scope on the existing Windows DHCP server cluster and activates the scope for the clients.
However, new clients in the area report they are not receiving any DHCP address information. Which of the following should the engineer do first?
- A. Confirm the network uses the same NTP server as the clients
- B. Confirm the client PCs are using the correct speed on the NIC
- C. Confirm the DHCP server is authorized in Active Directory
- D. Confirm the network has a helper address for the DHCP server
正解:D
解説:
When clients on a different VLAN cannot receive DHCP addresses, it's often because there is no DHCP helper address configured on the router or switch. A DHCP relay/helper address forwards DHCP requests from clients on the VLAN to the DHCP server, which may reside on a different network.
* Confirming the network has a helper address (Answer C): This should be the first step to ensure that DHCP requests from the VLAN are correctly routed to the DHCP server.
* Checking client NIC speed (Option A): While important, incorrect NIC speed wouldn't affect the ability to obtain an IP address from DHCP.
* Checking NTP server (Option B): Time synchronization is unrelated to DHCP issues.
* Authorizing the DHCP server (Option D): This is essential for DHCP operation, but since this is an existing DHCP cluster, the helper address is more likely the issue.
CompTIA Server+ Reference:This topic is related to SK0-005 Objective 1.2: Manage server network connections.
質問 # 50
A server administrator needs to replace a 4U rack-mounted device. Which of the following is the BEST way to install the device to ensure proper safety measures?
- A. Lift with the arms while bending the knees.
- B. Lift the device with the help of another administrator.
- C. Use a server lift. Most Voted
- D. Use a rolling cart.
正解:C
解説:
A piece of console furniture called a "crash cart" refers to a mobile server room cart equipped with a secured laptop that is used to provide a direct connection to malfunctioning servers and computers for restoration of crashes. - Not the answer.
4U would require at least 4 admin so not the answer....
Server lifts are used to raise equipment to installation level in a frame (cabinet or rack) or to remove equipment from a frame. Server lifts should only be used on level floors strong enough to support lift and load... Using a lift may be slower than maneuvering by hand; but if worker or equipment safety (usually because of weight) is a factor; using a lift is required.
https://www.idmworks.com/industry-analysis/data-center-server-lift/
質問 # 51
An administrator is troubleshooting a failure in the data center in which a server shut down/turned off when utility power was lost The server had redundant power supplies. Which of the following is the MOST likely cause of this failure?
- A. Redundant power supplies require 220V power
- B. The power supplies were not cross-connected
- C. The UPS batteries were overcharged.
- D. Both power supplies were connected to the same power feed
正解:D
解説:
The most likely cause of this failure is that both power supplies were connected to the same power feed, which means that they both lost power when utility power was lost. To prevent this from happening, redundant power supplies should be connected to different power feeds, preferably from different sources, such as a UPS or a generator. Verified Reference: [Redundant Power Supply Best Practices]
質問 # 52
A server administrator is installing a new server on a manufacturing floor. Because the server is publicly accessible, security requires the server to undergo hardware hardening. Which of the following actions should the administrator take?
- A. Apply driver updates.
- B. Close unneeded ports.
- C. Disable unused services.
- D. Set a BIOS password.
正解:D
解説:
Explanation
An action that the administrator should take to harden the hardware of a new server is to set a BIOS password.
BIOS (Basic Input/Output System) is a firmware that initializes the hardware components and settings of a system before loading the operating system. BIOS password is a security feature that requires a user to enter a password before accessing or modifying the BIOS settings or booting up the system. By setting a BIOS password, the administrator can prevent unauthorized or malicious users from changing the hardware configuration or boot order of the server.
References: CompTIA Server+ SK0-005 Certification Study Guide, Chapter 5, Lesson 5.1, Objective 5.1
質問 # 53
A Linux server was recently updated. Now, the server stops during the boot process with a blank screen and an £s> prompt. When of the following is the MOST likely cause of this issue?
- A. The system is booting to a USB flash drive
- B. The UEFI boot was interrupted by a missing Linux boot file
- C. The BIOS could not find a bootable hard disk
- D. The BIOS firmware needs to be upgraded
正解:B
解説:
The most likely cause of this issue is that the UEFI boot was interrupted by a missing Linux boot file, such as grub.cfg or vmlinuz, which are essential for loading the Linux kernel and booting the system.
The £s> prompt indicates that the system entered into UEFI Shell mode, which is a command-line interface for troubleshooting UEFI boot issues. The administrator can use UEFI Shell commands to locate and restore the missing boot file or change the boot order. Verified Reference: [UEFI Shell Guide]
質問 # 54
A server administrator has connected a new server to the network. During testing, the administrator discovers the server is not reachable via server but can be accessed by IP address. Which of the following steps should the server administrator take NEXT? (Select TWO).
- A. Check the default gateway.
- B. Check the DNS server.
- C. Check the hosts file.
- D. Run the tracert command
- E. Check the route tables.
- F. Run the ping command.
正解:B、C
解説:
Explanation: If the server is not reachable by name but can be accessed by IP address, it means that there is a problem with name resolution. The hosts file and the DNS server are both responsible for mapping hostnames to IP addresses. Therefore, the server administrator should check these two files for any errors or inconsistencies that might prevent the server from being resolved by name. References:
https://www.howtogeek.com/662249/how-to-edit-the-hosts-file-on-linux/
https://www.howtogeek.com/164981/how-to-use-nslookup-to-check-domain-name-information-in-microsoft-win
質問 # 55
A startup company needs to set up an initial disaster recovery site. The site must be cost-effective and deployed quickly. Which of the following sites should the company set up?
- A. Warm
- B. Colocated
- C. Hot
- D. Cold
正解:D
解説:
A cold site is a backup facility with little or no hardware equipment installed. A cold site is the most cost-effective option among the three disaster recovery sites. However, due to the fact that a cold site doesn't have any pre-installed equipment, it takes a lot of time to properly set it up so as to fully resume business operations1.
Reference = 1: Disaster Recovery Sites Comparison: Which one to Choose? - NAKIVO(https://www.nakivo.com/blog/overview-disaster-recovery-sites/)
質問 # 56
A server administrator notices the /var/log/audit/audit.log file on a Linux server is rotating loo frequently. The administrator would like to decrease the number of times the leg rotates without losing any of the information in the logs. Which of the following should the administrator configure?
- A. Move the audit. leg files to a remote syslog server.
- B. Decrease the duration of the log rotate cycle tor the audit. log file.
- C. increase the audit. log file size in the appropriate confutation file.
- D. Remove the tog rotate directive from the audit .log We configuration.
正解:C
解説:
The audit.log file is a file that records security-related events on a Linux server, such as user login, file access, and system commands. The logrotate utility is a tool that rotates, compresses, and deletes old log files based on certain criteria, such as size, time, or frequency. To decrease the number of times the log rotates without losing any information, the administrator should increase the audit.log file size in the appropriate configuration file, such as /etc/logrotate.conf or /etc/logrotate.d/auditd. Verified References: [audit.log],
[logrotate]
質問 # 57
A technician is attempting to reboot a remote physical Linux server. However, attempts to command a shutdown -----now result in the loss of the SSH connection. The server still responds to pings. Which of the following should the technician use to command a remote shutdown?
- A. An IDRAC
- B. A crash cart
- C. virtual serial console
- D. A KVM
正解:A
解説:
Explanation
An IDRAC (Integrated Dell Remote Access Controller) is a tool that can be used to command a remote shutdown of a physical Linux server. An IDRAC is a hardware device that provides out-of-band management for Dell servers. It allows the technician to access the server's console, power cycle, reboot, or shut down the server remotely using a web interface or a command-line interface. An IDRAC does not depend on the operating system or network connectivity of the server. A virtual serial console is a tool that can be used to access a remote virtual machine's console using a serial port connection. A KVM (Keyboard, Video, Mouse) switch is a device that allows the technician to switch between different computer sources using the same keyboard, monitor, and mouse. A crash cart is a mobile unit that contains a keyboard, monitor, mouse, and other tools that can be connected to a physical server for troubleshooting purposes. References:
https://www.dell.com/support/kbdoc/en-us/000131486/understanding-the-idrac
https://www.howtogeek.com/799968/what-is-a-kvm-switch/
https://www.techopedia.com/definition/1032/business-impact-analysis-bia
質問 # 58
A server administrator receives a report that Ann, a new user, is unable to save a file to her home directory on a server. The administrator checks Ann's home directory permissions and discovers the following:
dr-xr-xr-- /home/Ann
Which of the following commands should the administrator use to resolve the issue without granting unnecessary permissions?
- A. chmod711/home/Ann
- B. chmod777/home/Ann
- C. chmod666/home/Ann
- D. chmod754/home/Ann
正解:D
解説:
The administrator should use the command chmod 754 /home/Ann to resolve the issue without granting unnecessary permissions. The chmod command is used to change the permissions of files and directories on a Linux server. The permissions are represented by three numbers, each ranging from 0 to 7, that correspond to the read , write (w), and execute (x) permissions for the owner, group, and others respectively. The numbers are calculated by adding up the values of each permission: r = 4, w = 2, x = 1. For example, 7 means rwx (4 +
2 + 1), 6 means rw- (4 + 2), 5 means r-x (4 + 1), etc. In this case, Ann's home directory has the permissions dr-xr-xr-, which means that only the owner (d) can read and execute (x) the directory, and the group and others can only read and execute (x) but not write (w) to it. This prevents Ann from saving files to her home directory. To fix this issue, the administrator should grant write permission to the owner by using chmod 754
/home/Ann, which means that the owner can read , write (w), and execute (x) the directory, the group can read and execute (x) but not write (w) to it, and others can only read but not write (w) or execute (x) it.
This way, Ann can save files to her home directory without giving unnecessary permissions to others.
質問 # 59
Corporate policy mandates that logs from all servers be available for review regardless of the state of the server. Which of the following must be configured to comply with this policy?
- A. Aggregation
- B. Merging
- C. Collection
- D. Subscription
正解:A
解説:
Explanation
Aggregation is the process of collecting, standardizing, and consolidating log data from multiple sources into a central location. Aggregation makes it easier to search, analyze, and report on log data, as well as to comply with security policies and regulations. By aggregating logs from all servers, regardless of their state, the corporate policy can ensure that no log data is lost or inaccessible in case of a server failure or outage
質問 # 60
When configuring networking on a VM, which of the following methods would allow multiple VMs to share the same host IP address?
- A. Bridged
- B. vSwitch
- C. Host only
- D. NAT
正解:D
解説:
The method that would allow multiple VMs to share the same host IP address is NAT. NAT (Network Address Translation) is a technique that allows multiple devices to use a single public IP address by mapping their private IP addresses to different port numbers. NAT can be used for VM networking to enable multiple VMs on the same host to access the internet or other networks using the host's IP address. NAT can also provide security benefits by hiding the VMs' private IP addresses from external networks.
Reference: https://www.virtualbox.org/manual/ch06.html
質問 # 61
The HIDS logs on a server indicate a significant number of unauthorized access attempts via USB devices at startup. Which of the following steps should a server administrator take to BEST secure the server without limiting functionality?
- A. Set a BIOS/UEFI password on the server.
- B. Change the boot order on the server and restrict console access.C Configure the host OS to deny login attempts via USB.
- C. Disable all the USB ports on the server.
正解:B
解説:
Changing the boot order on the server and restricting console access would prevent unauthorized access attempts via USB devices at startup, as the server would not boot from any external media and only authorized users could access the console. Setting a BIOS/UEFI password on the server would also help, but it could be bypassed by resetting the CMOS battery or using a backdoor password. Configuring the host OS to deny login attempts via USB would not prevent booting from a malicious USB device that could compromise the system before the OS loads. Disabling all the USB ports on the server would limit functionality, as some peripherals or devices may need to use them. References:
* https://www.pcmag.com/how-to/dont-plug-it-in-how-to-prevent-a-usb-attack
* https://www.techopedia.com/definition/10362/boot-order
* https://www.techopedia.com/definition/10361/console-access
* https://www.techopedia.com/definition/102/bios-password
* https://www.techopedia.com/definition/10363/cmos-battery
質問 # 62
......
学習材料は有効なSK0-005効率的問題集:https://jp.fast2test.com/SK0-005-premium-file.html