最新HP0-P17考试题库
Examsoon最新HP0-P17认证真题,真题覆盖率达到90%以上。考不过全额退款保障,让您认证无忧。绝对真实来自Examsoon的高质量题库。
购买HP0-P17考试题库请认准Examsoon标志!切勿因贪便宜而造成不必要的损失和遗憾。下载题库及任何HP0-P17问题请与我站管理员联系!
HP0-P17 考试是 HP 公司的 HP-UX 11i v3 Security Administration 认证考试官方代号,Examsoon的HP0-P17权威考试题库软件是HP认证厂商的授权产品,Examsoon绝对保证第一次参加 HP0-P17 考试的考生即可顺利通过,否则承诺全额退款!
选择 Examsoon HP0-P17 题库
HP0-P17题库购买时请一定要认准Examsoon标志,世界第一IT认证资料服务提供商中国服务中心。
Examsoon
部分最新免费HP0-P17认证题库:(您也可以联系我下载部分最新HP0-P17考试题库)
Exam : HP HP0-P17
Title : HP-UX 11i v3 Security Administration
1. Which product encrypts data on zx2-based Integrity servers?
A. HP-UX VxFS filesystem
B. HP-UX Encryption Module
C. HP-UX Trusted Computing Services
D. HP-UX Integrity Trusted Platform Module
Answer: C
2. Which benefits does chroot provide to an application from a security perspective? (Select three.)
A. forces an application to start in a specified directory
B. allows the users to do a cd above the specified directory
C. prevents an application from starting in a specified directory
D. prevents the users from doing a cd above the specified directory
E. allows the users of the application access to the directory and the directories below it
F. prevents the users of the application access to the directory and the directories below it
Answer: ADE
3. Which commands configure an application to operate within a secure compartment? (Select two.)
A. privrun
B. privedit
C. setrules
D. cmdprivadm
E. setfilexsec
Answer: DE
4. Identify the features of the TCP Wrappers product. (Select three.)
A. enhances cryptographic authentication
B. provides protection against IP address spoofing
C. provides protection against hostname spoofing
D. provides data encryption on TCP "wrapped" connections
E. provides enhanced protection for RPC daemons using TCP/IP connections
F. provides enhanced security for daemons managed by inetd using TCP/IP connections
G. may be configured to provide enhanced security for any daemon using TCP/IP connections
Answer: BCF
5. Click the Exhibit button.
You used the dmesg command to display the warning shown in the exhibit. Which kernel parameter setting makes this warning message appear?
A. kill_overflow is set to 1
B. exc_stack_code is set to 0
C. buffer_overflow is set to 1
D. executable_stack is set to 0
Answer: D
6. Where are Trusted Computing Services (TCS) protected EVFS keys stored?
A. HP-UX kernel
B. EVFS volume
C. system stable storage
D. HP-UX root file system
E. Trusted Platform Module
Answer: D
7. Which chatr syntax enables buffer overflow protection on a per-binary basis?
A. chatr +b enable <binary>
B. chatr -es enable <binary>
C. chatr +es enable <binary>
D. chatr +bo enable <binary>
E. chatr +es default <binary>
Answer: C
8. Which tool is recommended for providing file integrity information?
A. hash
B. cksum
C. crypt
D. md5sum
Answer: D
9. Identify where Encrypted Volume and File System (EVFS) protects data.
A. in transit
B. in the kernel
C. over the network
D. on the storage device
Answer: D
10. Encrypted Volume and File System (EVFS) uses which type of key to encrypt data?
A. digital certificate
B. RSA-1024 bit public key
C. RSA-2048 bit private key
D. AES-128 bit symmetric key
E. AES-256 bit asymmetric key
Answer: D
11. Where can an HP-UX 11i v3 EVFS-encrypted backup tape from an HP Integrity rx7640 Server be restored and decrypted?
A. only on the HP-UX system where the tape was created
B. on any HP-UX system where the symmetric encryption key resides
C. on any HP-UX system where the backup owner’s public key resides
D. on any HP-UX system where the backup owner’s public/private key pair resides
Answer: D
12. Some open source software tools use the /usr/local/sbin and /usr/local/src directories. What should you do with the /usr/local directory to maintain a secure system?
A. Verify that /usr/local and its subdirectories are not world writable.
B. Remove /usr/local/bin and /usr/local/sbin from the user’s PATH variable.
C. Set permissions on /usr/local and its subdirectories to 047 so all users have access.
D. Use the swlist -l file | grep /usr/local command to see all files installed in those directories.
Answer: A
13. What is the effect of the coreadm -e global-setid command?
A. edits the core dump file
B. reads and interprets the core dump file
C. enables the kernel for system crash dumps
D. enables setuid/setgid core dumps system wide
E. causes all running setuid programs to generate a core file
Answer: D
14. After running kctune executable_stack=2, what happens if MyProg executes code from the stack?
A. MyProg continues running without incident.
B. MyProg is killed before a single instruction can be executed.
C. MyProg continues, but logs a warning to /var/adm/syslog/syslog.log.
D. MyProg continues, but a warning message is logged to the kernel message buffer.
Answer: D
15. After running /usr/sbin/pwck, the following output is displayed:
smbnull:*:101:101::/home/smbnull:/sbin/sh
Login directory not found
What should you do to tighten the security?
A. Nothing – it is a valid system user ID.
B. Nothing – it is used by CIFS/Samba to represent "nobody" with a positive UID.
C. Edit the /etc/passwd entry to specify a dummy login directory and a false login shell.
D. Delete it from /etc/passwd. Opensource Samba installs it by default and it is not required on HP-UX.
Answer: C
16. Which statement is true regarding an HP-UX VxFS filesystem using ACLs?
A. Default ACLs can only be placed on a file.
B. Default ACLs have the same owner as the owner of the file the ACL controls.
C. A directory’s ACL can have default entries that are applied to files subsequently.
D. An ACL has an owner that can be different from the owner of the file the ACL controls.
Answer: C
17. How can you grant NFS filesystem access to specific users as opposed to all users? (Select two.)
A. Specify the desired users to the /etc/dfs/sharetab entry for the mount point using the format "-access=user1:user2:user3".
B. Add the desired users to an ACL and set the permissions of the shared filesystem such that only members of the ACL can access the data.
C. Add the desired users to a group and set the permissions of the shared filesystem such that only members of the group can access the data.
D. Add the desired users to a netgroup and specify the netgroup in the /etc/dfs/sharetab entry for the mount point using the format "-access=netgroup".
Answer: BC
18. What is a limitation of HP Process Resource Manager (PRM) as it applies to Denial of Service (DoS) attacks?
A. Processes must be grouped before they can be managed.
B. PRM does not perform memory capping; only entitlement and selection.
C. PRM only applies to time-shared processes; real-time processes are not affected.
D. PRM requires a separate configuration file for time-shared and real-time processes.
Answer: C
19. In order to restrict the access to the /etc/group file through FTP, which statement should be included in the /etc/ftpd/ftpaccess file?
A. noaccess /etc/group
B. noretrieve /etc/group
C. accessdeny /etc/group
D. suppressaccess /etc/group
Answer: B
20. Identify ways HP Process Resource Manager (PRM) can protect a system against poorly designed applications. (Select three.)
A. PRM can limit the amount of memory applications may consume.
B. PRM can limit the amount of swap space applications may consume.
C. PRM can limit the amount of disk bandwidth applications may consume.
D. PRM can limit the amount of CPU resources applications may consume.
E. PRM can limit the amount of network bandwidth applications may consume.
F. PRM can limit the number of inbound network connections to configured applications.
Answer: ACD
Examsoon
HP0-P17学习资料
Examsoon
HP0-P17题库,不同于Testiinside HP0-P17、certtinside HP0-P17、Pass4sideHP0-P17、TestkingHP0-P17、Pass4sureHP0-P17的题库资料,是全球IT认证资料供应力量,以高科技的仿真效果,完全覆盖各类IT认证考试真题,保证您一次性得到最标准的认证真题测试。
Examsoon HP0-P17 的优势
1.Examsoon 模拟测试题具有最高的专业技术含量,只供具有相关专业知识的专家和学者学习和研究之用。
2.该测试已取得试题持有者和第三方的授权,我们深信IT业的专业人员和经理人有能力保证被授权产品的质量。
3.如果你使用 Examsoon模拟测试,我们将保证你的第一次参加考试即取得成功,否则,我们将全额退款!
4.提供每种产品免费测试。在您决定购买之前,请检测联接,可能存在的问题及试题质量和适用性。
HP0-P17 考试是 HP 公司的 HP-UX 11i v3 Security Administration 认证考试官方代号,Examsoon的 HP0-P17 权威考试题库软件是 HP 认证厂商的授权产品,Examsoon 绝对保证第一次参加 HP0-P17考试的考生即可顺利通过,否则承诺全额退款!
HP-UX 11i v3 Security Administration 认证作为全球IT领域专家 HP 热门认证之一,是许多大中IT企业选择人才标准的必备条件。 如果你正在准备 HP0-P17 考试,为 HP HP-UX 11i v3 Security Administration认证做最后冲刺,又苦于没有绝对权威的考试真题模拟, Examsoon希望能助你成功。
1、Examsoon考题大师HP0-P17试题都是考试原题的完美组合,覆盖率95%以上,答案由多位专业资深讲师原版破解得出,正确率100%,只要您使用本站的考试题库参加HP0-P17 考试,我们保证您一次轻松通过考试;
2、售后服务第一!我们相信要想在当今时代取得成功,必须为广大用户提供全套的周到细致的全程优质售后服务,只有客户满意了,我们才能发展。客户至上是我们Examsoon考题大师的一贯宗旨;
3、Examsoon实行“一次不过全额退款”承诺。如果您购买我们HP0-P17的考题,只要不是首次通过,凭盖有PROMETRIC或VUE考试中心钢印的考试成绩单,我们将退还您购买HP0-P17考题大师的全部费用,绝对保证您的利益不受到任何的损失;
4、本站HP0-P17题库根据HP0-P17考试的变化动态更新,在厂家考题每次发生变化后,我们承诺2天内更新HP0-P17题库。确保HP0-P17考题的覆盖率始终都在95%以上;我们提供2种 HP0-P17 考题大师版本供你选择。
5、软件版本HP0-P17 考试题库
优点:具有学习模式,测试模式,线上自动升级
缺点:仅限固定电脑使用,不可打印为文本,只能PC阅读
6、PDF 格式HP0-P17考试题库
优点:不需下载安装软件,方便用户打印和携带,但也带来了可随意制的弊端,因此我们提醒用户不得随意公开或出售本站的HP0-P17题库,一经发现立即取消其升级资格,且不予退款。
缺点:不具备测试模式,通过查看Examsoon网站及查收我们的更新E-MAIL获取更新信息。