Post on 07-Jul-2018
transcript
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
1/14
How To Deal With The Problem of Preparation of 1Z0-881 Exam
he preparation can be started once after knowing the syllabus of exam. If you start browsing to find a suitable source to prepare
Oracle Oracle Certified Expert - Oracle Solaris 10 Security Administrator 1Z0-881 from, you will be bombarded with thousands of
esults. It then adds to your hard work to look for the most authentic source from that heap. To save you from this trouble, I will tell
ou the source that will give you the most reliable information on the Oracle Solaris 10 Security Administrator Certified Expert Exam
xam you have to attempt.
Have Pass4sureTest By Your Side
he website I am talking about is Pass4sureTest and it is the most dependable source of 1Z0-881 Oracle Solaris 10 Security
Administrator Cer tified Expert Exam exam preparation material. This is because it has been in association with Oracle for a long
eriod of time now and is considered as best out there. In addition, Pass4sureTest is one of the forerunners of preparation movement
nd has been helping candidates to get through their exams for stretch of time.
Verify Reliability Through Testimonials
You can verify the reliability and relevancy by looking at the long line of testimonials stated by the customers. The Pass4sureTest
as successfully turned a number of customers into certified Oracle professionals. The testimonial section is full of claims by Oracle
Oracle Solaris 10 Security Administrator Certified Expert Exam professionals that willingly guarantee the reliability of
ass4sureTest.
http://www.pass4suretest.com/http://www.pass4suretest.com/Oracle-exams.htmlhttp://www.pass4suretest.com/http://www.pass4suretest.com/Oracle-exams.htmlhttp://www.pass4suretest.com/http://www.pass4suretest.com/Oracle-exams.htmlhttp://www.pass4suretest.com/http://www.pass4suretest.com/1Z0-881-exam.htmlhttp://www.pass4suretest.com/Oracle-exams.htmlhttp://www.pass4suretest.com/
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
2/14
What is Special About The 1Z0-881 Exam Product?
How would you know that the material provided by Pass4sureTest is unique andncomparable to others? Well this can be confirmed by looking at the material
provided to you. It is in rich PDF format which is easy to read and edit. Moreover,here is also special software included in the product that allows you to practice theest before taking exam.
1Z0-881 Practice Test Software
The 1Z0-881 practice software is created by specialists who have made sure that thequestions in this software cover all the syllabus topics of the Oracle 1Z0-881 exam.Resultantly, you will get full coverage of the syllabus.
The Facility To Set 1Z0-881 Exam
Preferences
With numerous accessibility options provided by thePass4sureTest's product, you can change exam
preferences, languages and other options as well. So, doas you please.
Simulation of Oracle 1Z0-881 Exam
The practice test software provided in the productimitates the Oracle Solaris 10 Security Administrator Certified Expert Exam exam environment and hence,
provides you the opportunity to attempt the real exam before it actually happens. As a result, your confidenceis driven up and you will enter the examination hallknowing what you are going to face in there.
With highly effective tools developed by McAfee and a SSL 64-bitframework, Pass4sureTest gives you unbeatable security.
SAFE AND SECURE
QUALITY IS OUR GUARANTEE
The material provided by the Pass4sureTest is top quality. Suchquality is achieved by a complete research of the 1Z0-881 OracleSolaris 10 Security Administrator Certified Expert Exam examsyllabus to create the preparatory material.
HANDY INTERFACE
The product is specially designed by keeping in mind the problems people have with the tech products. To ensure this Oracle OracleSolaris 10 Security Administrator Certified Expert Exam specialistshave worked hard and made a handy product.
Money Back Guarantee
Pass4sureTest is verymuch confident about the
product it offers and as aresult, it gives each andevery candidate a 90
days' window to state hisailure in Oracle Certified Expert - Oracleolaris 10 Security Administrator 1Z0-881xam. If a candidate brings forth his failure
n 90 days, Pass4sureTest pays the moneyack to the candidate. What better pportunity can there be to make your
nvestment risk-free? For more details, visithe website.
Never Remain Behind on
Updates
Pass4sureTest knows theimportance of updates ina software related
product. Therefore, it provides routine updatesfor the syllabus, Oracle
1Z0-881 exam questions and the software.These updates can be downloaded free of cost. To get benefit fully from the product,you should regularly check for updates.
Discounts And Rewards
Current customersare enjoying benefitsof cash-back offerswhereas new
promotions are
launched for the newcustomers. By buying
the Oracle Oracle Certified Expert - OracleSolaris 10 Security Administrator 1Z0-881Oracle Solaris 10 Security Administrator Certified Expert Exam exam package, youcan get a 30% discount. It will remain byyour side during you entire professionalcareer and will keep on helping you.
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
3/14
Try Free Demo of Oracle 1Z0-881 Exam Questions
n't trust Pass4sureTest before trying the free demo of the 1Z0-881 exam product. This will enable you to check the quality as well. Get the demo for acle Certified Expert - Oracle Solaris 10 Security Administrator 1Z0-881 exam now, free of cost. When you get satisfied with the quality, make theal purchase. Do leave your valuable feedback as it is a good source of insight.
http://www.pass4suretest.com/1Z0-881-exam.html
http://www.pass4suretest.com/1Z0-881-exam.html
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
4/14
Oracle
1Z0-881
Oracle Solaris 10 Security Administrator Certified
Expert Exam
Demo Product
To Buy Full Set of Exam Questions, Visit:http://www.pass4suretest.com/1Z0-881-exam.html
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
5/14
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
6/14
Question: 1
A security admiistrator has a requiremet to deploy the Solaris Security Toolkit oto all Solaris
servers i the departmet. I this eviromet, there are a variety of plaorms ad operan system
versios deployed. Oto which two plaorms ad operan system combiaos ca the Solaris
Security Toolkit be deployed i a supported conurao (Choose two.)
A. X86, Solaris 2.4
B. x64, Solaris 9
C. x86, Solaris 10
D. SPARC, Solaris 2.6
E. SPARC. Solaris 8
Answer: C, E
Question: 2
The compay security policy ow requires very detailed audin of all acos. This icludes
capturin all executed commads tonether with their arnumets ad the eviromet variables.
Aer acvan audin o all Solaris 10 systems, the security auditor complais about havin to
check the audit trail o each idividual host. He asks for a cetral place to capture all audit trails.
Usin stadard Solaris 10 security features, which is a soluo to this problem
A. Conure auditd to sed email with the evets.
B. Conure auditd to sed the output usin syslon to a cetral lonhost
C. Conure auditd to store the audit trail usin NFS o a cetral server.
D. Conure auditd to store the audit trail usin LDAP i a cetral directory.
Answer: C
Question: 3
Which two tasks does the Key Distribuo Ceter (KDC) perform (Choose two.)
A. issues service ckets
B. authecates services
C. issues ck-nran-ckets
D. validates passwords set i clear text
E. provides private sessios to services
Answer: A, C
Question: 4
Give:
jupiter$md5,rouds=2006$2amXesSj5$$kCF48vfPsHDjIKNXeEw7.: 12210::::::
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
7/14
What is the characterisc of this /etc/shadow etry
A. User jupiter uses the md5 hash, with salt 2006$2amXesSj5$, ad with the ecrypted password
$kCF48vFPsHDjIKNXeEw7V.
B. User jupiter uses the 2a hash, with 2006 iteraos of the hash, with salt 2amxesSj5, ad with the
ecrypted password kCF48vfPsHDjIKNXeEw7V.C. User Jupiter uses the md5 hash, with 2006 iteraos of the hash, with salt 2amXessj5, ad with
the ecrypted password kCF48vfPsHDjIKNXeEw7V.
D. User jupiter uses the md5 hash, with 2006 iteraos of the hash, with o salt, ad with the
ecrypted password $rQmxesSj5$$kCF48vfPsHDjIKNXeEw7V.
Answer: C
Question: 5
A security admiistrator is required to validate the itenrity of a set of operan system les o a
umber of Solaris systems. The admiistrator decides to use the Solaris Finerprit Database tovalidate conurao ad data les as well as biaries ad libraries. What commad, available by
default i Solaris 10, will help the security admiistrator collect the ecessary iformao that will
be used with the Solaris Finerprit Database
A. md5sum
B. dinest
C. ecrypt
D. elfsin
E. cryptoadm
Answer: B
Question: 6
You are conurin a ew system to be used as a itraet web server. Aer you have istalled the
miimal amout of packanes ad patched the system, you added the appropriate web server
packanes (SUNWapch2r ad SUNWapch2u). By default, the web server daemo will be started usin
UID webservd ad the basic privilene set. To comply with the compay’s policy of least privilene, you
eed to miimize the privilenes that the web server will have. What will you modify to specify the
privilenes that the web service will ru with
A. the PRIV_DEFAULT sen i /etc/security/policy.cof
B. the defaultpriv sen of webserverd i /etc/user_ar
C. the privilenes properly of the web service i the SMF repository
D. the privs property of the web service i /etc/security/exec_ar
Answer: C
Question: 7
Aer a recet audit, you have bee requested to miimize a exisn Solaris system which rus a
third party database applicao. Which two should you do before starn to miimize the system(Choose two.)
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
8/14
A. Back up the system.
B. Remove ay ueeded patches.
C. Istall the SUNWret metac luster.
D. Remove ay ueeded packanes.
E. Corm with the vedor of the database soware that they support miimizao.
Answer: A, E
Question: 8
You maitai a miimized ad hardeed web server. The exhibit shows the curret credeals that
the web server rus with. You receive a complait about the fact that a ewly istalled web-based
applicao does ot fuco. This applicao is based o a /bi/ksh cni-bi script. What sen
prevets this cni-bi pronram from workin
A. The system minht NOT have /bi/ksh istalled.B. The server is NOT allowed to call the exec system call.
C. The server should ru with uid=0 to ru cni-bi scripts.
D. Some of the libraries eeded by /bi/ksh are NOT preset i the webserver’s chroot eviromet.
Answer: B
Question: 9
Oe of the operators of the maiframe nroup was moved to the UNIX nroup ad tasked to acvate
ad conure password history. For every user, the last 10 passwords should be remembered i thehistory. I what le is the size of the password history conured
A. /etc/shadow
B. /etc/pam.cof
C. /etc/default/passwd
D. /etc/security/policy.cof
Answer: C
Question: 10
Withi the cotext of le itenrity, rules ca be implemeted to chane the scope of the Basic
Audit ad Report Tool (BART) maifest.
Give the rule le:
/home/bert/docs *.on[dt]
CHECK all
IGNORE mme
Which two statemets are valid (Choose two.)
A. All les o the system will be checked.
B. The last modicao me of all checked les will ot be checked.
C. Keywords such as CHECK ad IGNORE ca NOT be used i a rule le.D. Oly les with extesio .ont ad .ond i the directory /home/bert/docs will be checked.
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
9/14
E. All les o the system will be checked, except for les with extesios .ont ad .ond i the
directory /home/bert/docs.
Answer: B, D
Question: 11
Solaris Audin supports the selecve lonnin of which two kids of evets (Choose two.)
A. le access by selected users
B. access to selected les by all users
C. selected users makin outboud etwork coecos
D. password chanes which do ot meet the system password policy
Answer: A, C
Question: 12
A security admiistrator creates a directory called prevoy with the followin access cotrol policy:
$ neacl prevoy
#le: prevoy
# ower: secadm
# nroup: secadm
user::rwx nroup::r-x #eecve:r-x
mask: r-x
other: r-x
default: user::r-default:user:sysadm: rw-
default: nroup::r-
default:nroup:sysadm:rw-
defauIt:mask: rwx
default: other:---
Ito this directory, the security admiistrator creates a le called secrets. The is commad reports
the followin for the prevoy directory ad secrets le:
$ Is -Id . secrets
drwxr-xr-x+ 2 secadm secadm 512 Ju 6 16:38
-r—r------- + 1 secadm secadm 0 Ju 6 16:38 secrets
Which two acos ca be successfully take by the sysadm role (Choose two.)
A. The sysadm role ca read the secrets le.
B. The sysadm role ca write to the secrets le.
C. The sysadm role ca remove the secrets le.
D. The sysadm role ca create ew les uder the prevoy directory.
E. The sysadm role ca chane the Access Cotrol Lists of the prevoy directory.
Answer: A, B
Question: 13
The /etc/default/passwd le cotais a umber of conurao parameters that ca be used to
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
10/14
costrai the character composio or user passwords. What is oe or the daners or havin
password composio too nhtly costraied
A. Password complexity rules apply oly to the Enlish alphabet.
B. The etropy or the resuln password strins will be very hinh.
C. Duplicao or ecrypted user password strins is much more likely.D. Limited password value possibilies ca simplify brute force aacks.
E. Passwords are harder to compute whe usin may character classes.
Answer: D
Question: 14
Which two commads are part of Su Update Coeco (Choose two.)
A. /usr/bi/pknadm
B. /usr/bi/keytoolC. /usr/sbi/smpatch
D. /usr/sbi/patchadd
E. /usr/bi/updatemaaner
Answer: C, E
Question: 15
To harde a ewly istalled Solaris OS, a admiistrator is required to make sure that syslond is
conured to NOT accept messanes from the etwork. Which supported method ca be used toconure syslond like this
A. Ru svcadm disable -t svc:/etwork/system-Ion.
B. Edit /etc/default/syslond to set LOG_FROM_REMOTE=NO.
C. Edit /etc/rc2.d/S74syslon to start syslond with the -t opo.
D. Edit /lib/svc/method/system-lon to set LOG_FROM_REMOTE=NO.
Answer: B
Question: 16
Which are two advatanes of the Service Maanemet Facility compared to the iit.d startup scripts
(Choose two.)
A. It restarts processes if they die.
B. It hadles service depedecies.
C. It has methods to start ad stop the service.
D. It species what the system should do at each ru level.
Answer: A, B
Question: 17
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
11/14
You have bee asked to implemet defese i depth for etwork access to a system, where a web
server will be ruin o a lteret-facin etwork iterface. Which is NOT cotribun to the
defese i depth
A. ruin the web server i a zoeB. usin svcadm to disable uused services
C. usin IP Filter to limit which etwork ports ca be accessed from the Iteret
D. usin VLANs o a sinle etwork iterface istead of usin mulple etwork iterfaces
E. usin TCP wrappers to limit from which system SSH be used to coect to the system
Answer: D
Question: 18
A ew security related patch has bee released for the Solaris OS. This patch eeds to be applied to
the system that fucos as your web server. The web server is conured to ru i a o-nlobalzoe. Ca you just use patchadd to apply the patch to the nlobal zoe to update the web server
zoe
A. No, you eed to shut dow the web server zoe rst.
B. Yes, patches will be automacally applied to all zoes.
C. No, you eed to apply the patch to the web server zoe separately.
D. Yes, but you must make sure that the web server zoe is booted rst.
Answer: B
Question: 19
You decided it was worth maitaiin a extremely paraoid policy whe conurin your rewall
rules. Therefore, you had your maanemet approve the implemetao of a security policy stace
to dey all iboud coeco requests to your corporate etwork. How is it possible that you sll
suer from remote exploits that your adversaries are usin to obtai iteracve sessios iside your
rewall
A. TCP splicin is easy to do.
B. Iteral soware may be vulerable.
C. UDP vulerabilies are well-kow ad exploited.
D. ICMP hijackin aacks ca sll succeed throunh ay rewall.
Answer: B
Question: 20
You have bee asked to nrat the user eovy, a member of the sta nroup, read ad write access to
the le /app/otes which has the followin properes:
Is -I/app/otes
-rw-rw---- 1 root app 0 Ju 6 15:11/app/otes
Which opos will NOT nrat the user the ability to read ad write the le
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
12/14
A. usermod -G app eovy
B. seacl -m user:eovy:rw- /app/otes
C. seacl -m nroup: sta:rw- /app/otes
D. usermod -K defaultpriv=basic,le_dac_read,le_dac_write eovy
Answer: D
Question: 21
A security admiistrator has a requiremet to make a ecrypted backup copy of a applicao ad
its data, usin the AES alnorithm, so that it ca be safely trasmied to a parter. Which two
commad sequeces ca be used to neerate a ecrypted backup of the les uder/app1
(Choose two.)
A. crypt < /app1/*> app1.backup.aes
B. ecrypt-a aes -d /app1 -o app1.backup.aes
C. tar cf. /app1 I nzip -d -e aes > app1.backup.aesD. ufsdump 0f. /app1 |\ crypt-a aes > app1.backup.aes
E. ufsdump 0f-/app1 I\ ecrypt -a aes -o app1.backup.aes
F. tar cf-/app1 I\ opessl ec -out app1.backup.aes -aes-128-cbc
Answer: E, F
Question: 22
A cryptonraphically sined patch provides system admiistrators with assurace that the patch
possesses certai qualies. Which two qualies are assured whe a patch sinature is veried(Choose two.)
A. The patch has a veried orini.
B. The patch has NOT bee modied sice it was sined.
C. The patch was created by a Su Cered Systems Enieer.
D. The cotets of the patch have NOT bee revealed to ayoe who does NOT have a Su service
pla.
Answer: A, B
Question: 23
A security admiistrator has a requiremet to help conure ad deploy a ew server. What are two
security tasks that the security admiistrator should perform (Choose two.)
A. Conure the server to use LDAP for authecao.
B. Conure etwork iterfaces ad roun iformao.
C. Istall a DTrace probe to capture the use of privilenes.
D. Disable ay etwork services that are NOT bein used.
E. Apply soware patches to correct security vulerabilies.
Answer: D, E
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
13/14
Question: 24
Due to chanes to the security policy of your ornaizao, access restrico must be applied to
systems. The chanes specify that access to systems throunh the p protocol is NOT allowed
accordin to the Huma Resources departmet, which has the 10.10.10.0/24 address space
assined. TCP wrappers have bee eabled for the p daemo, ad these les have bee conured:# cat /etc/hosts.allow
i.pd: ALL
# cat /etc/hosts.dey
i.pd: 10.10.10.0/24
Despite the implemeted conurao, Huma Resources is sll able to access systems throunh the
p protocol. What aco must be take
A. The p daemo must be restarted.
B. The ietd daemo must be restarted.
C. The etry i the hosts.dey le is wron ad must be chaned.
D. The etry i the hosts.allow le is wron ad must be chaned.
Answer: D
Question: 25
Packet lters ad rewalls are a importat compoet of ay defese-i-depth security strateny.
Which two types of threats ca IP Filter be deployed as a eecve coutermeasure anaist
(Choose two.)
A. a Christmas Tree sca
B. a aempt to lon i to a system usin SSH by a uauthorized user
C. a aempt to exploit a SQL ijeco vulerability i a web storefrot applicao
D. a aempt to exploit a buer overow vulerability i rpcbid, orinian from a host o a
authorized etwork
E. a aempt to exploit a buer overow vulerability i rpcbid, orinian from a host o a
uauthorized etwork
Answer: A, E
8/18/2019 Pass4Sure 1Z0-881 Exam Questions
14/14
THANKS FOR TRYING THE DEMO OF OUR PRODUCT
Visit Our Site to Purchase the Full Set of Actual 1Z0-881 Exam Quesos With Aswers.
http://www.pass4suretest.com/1Z0-881-exam.html
We Also Provide Pracce Exam Soware That Simulates Real Exam Eviromet Ad Has
May Self-Assessmet Features. Dowload Free Product Demo From:
http://www.pass4suretest.com/1Z0-881-exam.html
Moey Back Guaratee
Check Out Our Customer Tesmoials