2013年6月29日星期六

310-301 best SUN certification exam questions and answers free download

Are you still upset about how to pass SUN certification 310-301 exam? Are you still waiting for the latest information about SUN certification 310-301 exam? IT-Tests.com has come up with the latest training material about SUN certification 310-301 exam. Do you want to pass SUN certification 310-301 exam easily? Please add IT-Tests's SUN certification 310-301 exam practice questions and answers to your cart now! IT-Tests.com has provided part of SUN certification 310-301 exam practice questions and answers for you on www.IT-Tests.com and you can free download as a try. I believe you will be very satisfied with our products. With our products you can easily pass the exam. We promise that if you have used IT-Tests's latest SUN certification 310-301 exam practice questions and answers exam but fail to pass the exam, IT-Tests.com will give you a full refund.


IT-Tests.com SUN 310-301 exam training materials praised by the majority of candidates is not a recent thing. This shows IT-Tests.com SUN 310-301 exam training materials can indeed help the candidates to pass the exam. Compared to other questions providers, IT-Tests.com SUN 310-301 exam training materials have been far ahead. uestions broad consumer recognition and reputation, it has gained a public praise. If you want to participate in the SUN 310-301 exam, quickly into IT-Tests.com website, I believe you will get what you want. If you miss you will regret, if you want to become a professional IT expert, then quickly add it to cart.


The training tools of IT-Tests.com contains exam experience and materials which are come up with by our IT team of experts. Also we provide exam practice questions and answers about the SUN 310-301 exam certification. Our IT-Tests's high degree of credibility in the IT industry can provide 100% protection to you. In order to let you choose to buy our products more peace of mind, you can try to free download part of the exam practice questions and answers about SUN certification 310-301 exam online.


If you choose to buy the IT-Tests's raining plan, we can make ensure you to 100% pass your first time to attend SUN certification 310-301 exam. If you fail the exam, we will give a full refund to you.


Exam Code: 310-301

Exam Name: SUN (Sun Certified Security Administrator)

310-301 (Sun Certified Security Administrator) Free Demo Download: http://www.it-tests.com/310-301.html


NO.1 Which is a public key encryption algorithm?
A.AH
B.AES
C.RSA
D.PGP
E.IDEA
Correct:C

SUN   310-301   310-301   310-301

NO.2 Which statement about denial of service attack is FALSE?
A.Denial of service is always preventable.
B.Multiple machines may be used as the source of the attack.
C.Service is denied on the victim host when a key resource is consumed.
D.A denial of service attack is an explicit attempt by an attacker to prevent legitimate users of a service
from using that service.
Correct:A

SUN   310-301   310-301   310-301

NO.3 What command loads a DSA identity into a Solaris Secure Shell authentication agent?
A.ssh-add
B.ssh-agent
C.ssh-keyadd
D.ssh-keyload
E.ssh-load-identity
Correct:A

SUN   310-301   310-301   310-301

NO.4 Which command can customize the size for system log file rotation?
A.dmesg
B.logger
C.logadm
D.syslog
E.syslogd
Correct:C

SUN   310-301   310-301   310-301

NO.5 Which two regular user PATH assignments expose the user to a Trojan horse attack? (Choose
two.)
A.PATH=/usr/bin:/bin
B.PATH=/usr/bin:/sbin:/usr/sbin
C.PATH=/usr/bin:/sbin:/usr/sbin:
D.PATH=.:/usr/bin:/sbin:/usr/sbin
Correct:C D

SUN   310-301   310-301   310-301

NO.6 Which evasion technique can NOT be detected by system integrity checks?
A.installing a rootkit
B.adding user accounts
C.abusing an existing user account
D.installing a loadable kernel module
Correct:C

SUN   310-301   310-301   310-301

NO.7 Which command generates client key pairs and adds them to the $HOME/.ssh directory?
A.ssh-add
B.ssh-agent
C.ssh-keygen
D.ssh-keyadd
Correct:C

SUN   310-301   310-301   310-301

NO.8 Which setting in the /etc/system file limits the maximum number of user processes to 100 to
prevent a user from executing a fork bomb on a system?
A.set maxuprc = 100
B.set maxusers = 100
C.set user_procs = 100
D.set max_nprocs = 100
Correct:A

SUN   310-301   310-301   310-301

NO.9 How do you distinguish between denial of service attacks and programming errors?
A.You cannot make this distinction.
B.You examine the audit events for the process.
C.You verify that the process user ID is that of a valid user.
D.You check the binary against the Solaris Fingerprint Database.
Correct:A

SUN   310-301   310-301   310-301

NO.10 Which syslog facility level specification can be used to record unsuccessful attempts to su(1M)?
A.su.warning
B.cron.debug
C.kernel.alert
D.auth.warning
Correct:D

SUN   310-301   310-301   310-301

NO.11 Which two types of host keys are supported by Solaris Secure Shell? (Choose two.)
A.AES
B.RSA
C.DSA
D.DES
E.3DES
Correct:B C

SUN   310-301   310-301   310-301

NO.12 /var/adm/messages contains this output: Jan 28 21:23:18 mailhost in.telnetd[20911]: [ID 808958
daemon.warning] refused connect from ns.foo.com (access denied) Why was this line generated?
A.A user connecting from ns.foo.com failed to authenticate.
B.The user daemon is not allowed to log in from ns.foo.com.
C.A portscan was run against mailhost from ns.foo.com.
D.The TCP Wrapper configuration does not allow telnet connections from ns.foo.com.
Correct:D

SUN   310-301   310-301   310-301

NO.13 Which is uncharacteristic of a Trojan horse program used to escalate privileges?
A.It is installed in /usr/bin.
B.It is owned by a normal user.
C.It has the same name as a common program.
D.It contains additional functionality which the user does not expect.
Correct:A

SUN   310-301   310-301   310-301

NO.14 The system administrator finds a Trojaned login command using md5 and the Solaris
Fingerprint Database. What is true about the system administrator's incident response tasks?
A.The server must be rebuilt.
B.BSM will identify the attacker.
C.All other replaced system files can be identified using md5 and the Solaris Fingerprint Database.
D.All other replaced system files can be identified using md5 and the Solaris Fingerprint Database and
replaced with trusted versions.
Correct:A

SUN   310-301   310-301   310-301

NO.15 What cryptographic assurance is provided by public key cryptography that is NOT provided by
secret key cryptography?
A.integrity
B.confidentiality
C.authentication
D.non-repudiation
Correct:D

SUN   310-301   310-301   310-301

NO.16 Click the Exhibit button. Which connection demonstrates that telnet has been denied using TCP
Wrappers?
A.Connection 1
B.Connection 2
C.Connection 3
D.Connection 4
Correct:A

SUN   310-301   310-301   310-301

NO.17 Which cryptographic assurances are provided by SSL?
A.confidentiality, integrity, availability
B.authorization, confidentiality, message integrity
C.confidentiality, client authentication, server authentication
D.authentication, confidentiality, access control, non-repudiation
Correct:C

SUN   310-301   310-301   310-301

NO.18 User fred runs a program that consumes all of the system's memory while continuously
spawning a new program. You decide to terminate all of fred's programs to put a stop to this. What
command should you use?
A.kill -u fred
B.pkill -U fred
C.passwd -l fred
D.kill `ps -U fred -o pid`
Correct:B

SUN   310-301   310-301   310-301

NO.19 Which threat can be mitigated by setting the Open Boot PROM security mode to full?
A.system panics
B.booting into single user mode
C.remotely accessing the console
D.logging in as root at the console
Correct:B

SUN   310-301   310-301   310-301

NO.20 Which two services support TCP Wrappers by default in the Solaris 9 OE? (Choose two.)
A.inetd
B.rpcbind
C.sendmail
D.automountd
E.Solaris Secure Shell
Correct:A E

SUN   310-301   310-301   310-301

IT-Tests.com have a huge senior IT expert team. They use their professional IT knowledge and rich experience to develop a wide range of different training plans which can help you pass SUN certification 310-301 exam successfully. In IT-Tests.com you can always find out the most suitable training way for you to pass the exam easily. No matter you choose which kind of the training method, IT-Tests.com will provide you a free one-year update service. IT-Tests's information resources are very wide and also very accurate. When selecting IT-Tests, passing SUN certification 310-301 exam is much more simple for you.


没有评论:

发表评论