Pass4Sure 1Z0-881 Exam Questions

8/18/2019 Pass4Sure 1Z0-881 Exam Questions

1/14

How To Deal With The Problem of Preparation of 1Z0-881 Exam

he preparation can be started once after knowing the syllabus of exam. If you start browsing to find a suitable source to prepare

Oracle Oracle Certified Expert - Oracle Solaris 10 Security Administrator 1Z0-881 from, you will be bombarded with thousands of

esults. It then adds to your hard work to look for the most authentic source from that heap. To save you from this trouble, I will tell

ou the source that will give you the most reliable information on the Oracle Solaris 10 Security Administrator Certified Expert Exam

xam you have to attempt.

Have Pass4sureTest By Your Side

he website I am talking about is Pass4sureTest and it is the most dependable source of 1Z0-881 Oracle Solaris 10 Security

Administrator Cer tified Expert Exam exam preparation material. This is because it has been in association with Oracle for a long

eriod of time now and is considered as best out there. In addition, Pass4sureTest is one of the forerunners of preparation movement

nd has been helping candidates to get through their exams for stretch of time.

Verify Reliability Through Testimonials

You can verify the reliability and relevancy by looking at the long line of testimonials stated by the customers. The Pass4sureTest

as successfully turned a number of customers into certified Oracle professionals. The testimonial section is full of claims by Oracle

Oracle Solaris 10 Security Administrator Certified Expert Exam professionals that willingly guarantee the reliability of

ass4sureTest.

http://www.pass4suretest.com/http://www.pass4suretest.com/Oracle-exams.htmlhttp://www.pass4suretest.com/http://www.pass4suretest.com/Oracle-exams.htmlhttp://www.pass4suretest.com/http://www.pass4suretest.com/Oracle-exams.htmlhttp://www.pass4suretest.com/http://www.pass4suretest.com/1Z0-881-exam.htmlhttp://www.pass4suretest.com/Oracle-exams.htmlhttp://www.pass4suretest.com/


2/14

What is Special About The 1Z0-881 Exam Product?

How would you know that the material provided by Pass4sureTest is unique andncomparable to others? Well this can be confirmed by looking at the material

provided to you. It is in rich PDF format which is easy to read and edit. Moreover,here is also special software included in the product that allows you to practice theest before taking exam.

1Z0-881 Practice Test Software

The 1Z0-881 practice software is created by specialists who have made sure that thequestions in this software cover all the syllabus topics of the Oracle 1Z0-881 exam.Resultantly, you will get full coverage of the syllabus.

The Facility To Set 1Z0-881 Exam

Preferences

With numerous accessibility options provided by thePass4sureTest's product, you can change exam

preferences, languages and other options as well. So, doas you please.

Simulation of Oracle 1Z0-881 Exam

The practice test software provided in the productimitates the Oracle Solaris 10 Security Administrator Certified Expert Exam exam environment and hence,

provides you the opportunity to attempt the real exam before it actually happens. As a result, your confidenceis driven up and you will enter the examination hallknowing what you are going to face in there.

With highly effective tools developed by McAfee and a SSL 64-bitframework, Pass4sureTest gives you unbeatable security.

SAFE AND SECURE

QUALITY IS OUR GUARANTEE

The material provided by the Pass4sureTest is top quality. Suchquality is achieved by a complete research of the 1Z0-881 OracleSolaris 10 Security Administrator Certified Expert Exam examsyllabus to create the preparatory material.

HANDY INTERFACE

The product is specially designed by keeping in mind the problems people have with the tech products. To ensure this Oracle OracleSolaris 10 Security Administrator Certified Expert Exam specialistshave worked hard and made a handy product.

Money Back Guarantee

Pass4sureTest is verymuch confident about the

product it offers and as aresult, it gives each andevery candidate a 90

days' window to state hisailure in Oracle Certified Expert - Oracleolaris 10 Security Administrator 1Z0-881xam. If a candidate brings forth his failure

n 90 days, Pass4sureTest pays the moneyack to the candidate. What better pportunity can there be to make your

nvestment risk-free? For more details, visithe website.

Never Remain Behind on

Updates

Pass4sureTest knows theimportance of updates ina software related

product. Therefore, it provides routine updatesfor the syllabus, Oracle

1Z0-881 exam questions and the software.These updates can be downloaded free of cost. To get benefit fully from the product,you should regularly check for updates.

Discounts And Rewards

Current customersare enjoying benefitsof cash-back offerswhereas new

promotions are

launched for the newcustomers. By buying

the Oracle Oracle Certified Expert - OracleSolaris 10 Security Administrator 1Z0-881Oracle Solaris 10 Security Administrator Certified Expert Exam exam package, youcan get a 30% discount. It will remain byyour side during you entire professionalcareer and will keep on helping you.


3/14

Try Free Demo of Oracle 1Z0-881 Exam Questions

n't trust Pass4sureTest before trying the free demo of the 1Z0-881 exam product. This will enable you to check the quality as well. Get the demo for acle Certified Expert - Oracle Solaris 10 Security Administrator 1Z0-881 exam now, free of cost. When you get satisfied with the quality, make theal purchase. Do leave your valuable feedback as it is a good source of insight.

http://www.pass4suretest.com/1Z0-881-exam.html



4/14

Oracle

1Z0-881

Oracle Solaris 10 Security Administrator Certified

Expert Exam

Demo Product

To Buy Full Set of Exam Questions, Visit:http://www.pass4suretest.com/1Z0-881-exam.html


5/14


6/14

Question: 1

A security admiistrator has a requiremet to deploy the Solaris Security Toolkit oto all Solaris

servers i the departmet. I this eviromet, there are a variety of plaorms ad operan system

versios deployed. Oto which two plaorms ad operan system combiaos ca the Solaris

Security Toolkit be deployed i a supported conurao (Choose two.)

A. X86, Solaris 2.4

B. x64, Solaris 9

C. x86, Solaris 10

D. SPARC, Solaris 2.6

E. SPARC. Solaris 8

Answer: C, E

Question: 2

The compay security policy ow requires very detailed audin of all acos. This icludes

capturin all executed commads tonether with their arnumets ad the eviromet variables.

Aer acvan audin o all Solaris 10 systems, the security auditor complais about havin to

check the audit trail o each idividual host. He asks for a cetral place to capture all audit trails.

Usin stadard Solaris 10 security features, which is a soluo to this problem

A. Conure auditd to sed email with the evets.

B. Conure auditd to sed the output usin syslon to a cetral lonhost

C. Conure auditd to store the audit trail usin NFS o a cetral server.

D. Conure auditd to store the audit trail usin LDAP i a cetral directory.

Answer: C

Question: 3

Which two tasks does the Key Distribuo Ceter (KDC) perform (Choose two.)

A. issues service ckets

B. authecates services

C. issues ck-nran-ckets

D. validates passwords set i clear text

E. provides private sessios to services

Answer: A, C

Question: 4

Give:

jupiter$md5,rouds=2006$2amXesSj5$$kCF48vfPsHDjIKNXeEw7.: 12210::::::


7/14

What is the characterisc of this /etc/shadow etry

A. User jupiter uses the md5 hash, with salt 2006$2amXesSj5$, ad with the ecrypted password

$kCF48vFPsHDjIKNXeEw7V.

B. User jupiter uses the 2a hash, with 2006 iteraos of the hash, with salt 2amxesSj5, ad with the

ecrypted password kCF48vfPsHDjIKNXeEw7V.C. User Jupiter uses the md5 hash, with 2006 iteraos of the hash, with salt 2amXessj5, ad with

the ecrypted password kCF48vfPsHDjIKNXeEw7V.

D. User jupiter uses the md5 hash, with 2006 iteraos of the hash, with o salt, ad with the

ecrypted password $rQmxesSj5$$kCF48vfPsHDjIKNXeEw7V.

Answer: C

Question: 5

A security admiistrator is required to validate the itenrity of a set of operan system les o a

umber of Solaris systems. The admiistrator decides to use the Solaris Finerprit Database tovalidate conurao ad data les as well as biaries ad libraries. What commad, available by

default i Solaris 10, will help the security admiistrator collect the ecessary iformao that will

be used with the Solaris Finerprit Database

A. md5sum

B. dinest

C. ecrypt

D. elfsin

E. cryptoadm

Answer: B

Question: 6

You are conurin a ew system to be used as a itraet web server. Aer you have istalled the

miimal amout of packanes ad patched the system, you added the appropriate web server

packanes (SUNWapch2r ad SUNWapch2u). By default, the web server daemo will be started usin

UID webservd ad the basic privilene set. To comply with the compay’s policy of least privilene, you

eed to miimize the privilenes that the web server will have. What will you modify to specify the

privilenes that the web service will ru with

A. the PRIV_DEFAULT sen i /etc/security/policy.cof

B. the defaultpriv sen of webserverd i /etc/user_ar

C. the privilenes properly of the web service i the SMF repository

D. the privs property of the web service i /etc/security/exec_ar

Answer: C

Question: 7

Aer a recet audit, you have bee requested to miimize a exisn Solaris system which rus a

third party database applicao. Which two should you do before starn to miimize the system(Choose two.)


8/14

A. Back up the system.

B. Remove ay ueeded patches.

C. Istall the SUNWret metac luster.

D. Remove ay ueeded packanes.

E. Corm with the vedor of the database soware that they support miimizao.

Answer: A, E

Question: 8

You maitai a miimized ad hardeed web server. The exhibit shows the curret credeals that

the web server rus with. You receive a complait about the fact that a ewly istalled web-based

applicao does ot fuco. This applicao is based o a /bi/ksh cni-bi script. What sen

prevets this cni-bi pronram from workin

A. The system minht NOT have /bi/ksh istalled.B. The server is NOT allowed to call the exec system call.

C. The server should ru with uid=0 to ru cni-bi scripts.

D. Some of the libraries eeded by /bi/ksh are NOT preset i the webserver’s chroot eviromet.

Answer: B

Question: 9

Oe of the operators of the maiframe nroup was moved to the UNIX nroup ad tasked to acvate

ad conure password history. For every user, the last 10 passwords should be remembered i thehistory. I what le is the size of the password history conured

A. /etc/shadow

B. /etc/pam.cof

C. /etc/default/passwd

D. /etc/security/policy.cof

Answer: C

Question: 10

Withi the cotext of le itenrity, rules ca be implemeted to chane the scope of the Basic

Audit ad Report Tool (BART) maifest.

Give the rule le:

/home/bert/docs *.on[dt]

CHECK all

IGNORE mme

Which two statemets are valid (Choose two.)

A. All les o the system will be checked.

B. The last modicao me of all checked les will ot be checked.

C. Keywords such as CHECK ad IGNORE ca NOT be used i a rule le.D. Oly les with extesio .ont ad .ond i the directory /home/bert/docs will be checked.


9/14

E. All les o the system will be checked, except for les with extesios .ont ad .ond i the

directory /home/bert/docs.

Answer: B, D

Question: 11

Solaris Audin supports the selecve lonnin of which two kids of evets (Choose two.)

A. le access by selected users

B. access to selected les by all users

C. selected users makin outboud etwork coecos

D. password chanes which do ot meet the system password policy

Answer: A, C

Question: 12

A security admiistrator creates a directory called prevoy with the followin access cotrol policy:

$ neacl prevoy

#le: prevoy

# ower: secadm

# nroup: secadm

user::rwx nroup::r-x #eecve:r-x

mask: r-x

other: r-x

default: user::r-default:user:sysadm: rw-

default: nroup::r-

default:nroup:sysadm:rw-

defauIt:mask: rwx

default: other:---

Ito this directory, the security admiistrator creates a le called secrets. The is commad reports

the followin for the prevoy directory ad secrets le:

$ Is -Id . secrets

drwxr-xr-x+ 2 secadm secadm 512 Ju 6 16:38

-r—r------- + 1 secadm secadm 0 Ju 6 16:38 secrets

Which two acos ca be successfully take by the sysadm role (Choose two.)

A. The sysadm role ca read the secrets le.

B. The sysadm role ca write to the secrets le.

C. The sysadm role ca remove the secrets le.

D. The sysadm role ca create ew les uder the prevoy directory.

E. The sysadm role ca chane the Access Cotrol Lists of the prevoy directory.

Answer: A, B

Question: 13

The /etc/default/passwd le cotais a umber of conurao parameters that ca be used to


10/14

costrai the character composio or user passwords. What is oe or the daners or havin

password composio too nhtly costraied

A. Password complexity rules apply oly to the Enlish alphabet.

B. The etropy or the resuln password strins will be very hinh.

C. Duplicao or ecrypted user password strins is much more likely.D. Limited password value possibilies ca simplify brute force aacks.

E. Passwords are harder to compute whe usin may character classes.

Answer: D

Question: 14

Which two commads are part of Su Update Coeco (Choose two.)

A. /usr/bi/pknadm

B. /usr/bi/keytoolC. /usr/sbi/smpatch

D. /usr/sbi/patchadd

E. /usr/bi/updatemaaner

Answer: C, E

Question: 15

To harde a ewly istalled Solaris OS, a admiistrator is required to make sure that syslond is

conured to NOT accept messanes from the etwork. Which supported method ca be used toconure syslond like this

A. Ru svcadm disable -t svc:/etwork/system-Ion.

B. Edit /etc/default/syslond to set LOG_FROM_REMOTE=NO.

C. Edit /etc/rc2.d/S74syslon to start syslond with the -t opo.

D. Edit /lib/svc/method/system-lon to set LOG_FROM_REMOTE=NO.

Answer: B

Question: 16

Which are two advatanes of the Service Maanemet Facility compared to the iit.d startup scripts

(Choose two.)

A. It restarts processes if they die.

B. It hadles service depedecies.

C. It has methods to start ad stop the service.

D. It species what the system should do at each ru level.

Answer: A, B

Question: 17


11/14

You have bee asked to implemet defese i depth for etwork access to a system, where a web

server will be ruin o a lteret-facin etwork iterface. Which is NOT cotribun to the

defese i depth

A. ruin the web server i a zoeB. usin svcadm to disable uused services

C. usin IP Filter to limit which etwork ports ca be accessed from the Iteret

D. usin VLANs o a sinle etwork iterface istead of usin mulple etwork iterfaces

E. usin TCP wrappers to limit from which system SSH be used to coect to the system

Answer: D

Question: 18

A ew security related patch has bee released for the Solaris OS. This patch eeds to be applied to

the system that fucos as your web server. The web server is conured to ru i a o-nlobalzoe. Ca you just use patchadd to apply the patch to the nlobal zoe to update the web server

zoe

A. No, you eed to shut dow the web server zoe rst.

B. Yes, patches will be automacally applied to all zoes.

C. No, you eed to apply the patch to the web server zoe separately.

D. Yes, but you must make sure that the web server zoe is booted rst.

Answer: B

Question: 19

You decided it was worth maitaiin a extremely paraoid policy whe conurin your rewall

rules. Therefore, you had your maanemet approve the implemetao of a security policy stace

to dey all iboud coeco requests to your corporate etwork. How is it possible that you sll

suer from remote exploits that your adversaries are usin to obtai iteracve sessios iside your

rewall

A. TCP splicin is easy to do.

B. Iteral soware may be vulerable.

C. UDP vulerabilies are well-kow ad exploited.

D. ICMP hijackin aacks ca sll succeed throunh ay rewall.

Answer: B

Question: 20

You have bee asked to nrat the user eovy, a member of the sta nroup, read ad write access to

the le /app/otes which has the followin properes:

Is -I/app/otes

-rw-rw---- 1 root app 0 Ju 6 15:11/app/otes

Which opos will NOT nrat the user the ability to read ad write the le


12/14

A. usermod -G app eovy

B. seacl -m user:eovy:rw- /app/otes

C. seacl -m nroup: sta:rw- /app/otes

D. usermod -K defaultpriv=basic,le_dac_read,le_dac_write eovy

Answer: D

Question: 21

A security admiistrator has a requiremet to make a ecrypted backup copy of a applicao ad

its data, usin the AES alnorithm, so that it ca be safely trasmied to a parter. Which two

commad sequeces ca be used to neerate a ecrypted backup of the les uder/app1

(Choose two.)

A. crypt < /app1/*> app1.backup.aes

B. ecrypt-a aes -d /app1 -o app1.backup.aes

C. tar cf. /app1 I nzip -d -e aes > app1.backup.aesD. ufsdump 0f. /app1 |\ crypt-a aes > app1.backup.aes

E. ufsdump 0f-/app1 I\ ecrypt -a aes -o app1.backup.aes

F. tar cf-/app1 I\ opessl ec -out app1.backup.aes -aes-128-cbc

Answer: E, F

Question: 22

A cryptonraphically sined patch provides system admiistrators with assurace that the patch

possesses certai qualies. Which two qualies are assured whe a patch sinature is veried(Choose two.)

A. The patch has a veried orini.

B. The patch has NOT bee modied sice it was sined.

C. The patch was created by a Su Cered Systems Enieer.

D. The cotets of the patch have NOT bee revealed to ayoe who does NOT have a Su service

pla.

Answer: A, B

Question: 23

A security admiistrator has a requiremet to help conure ad deploy a ew server. What are two

security tasks that the security admiistrator should perform (Choose two.)

A. Conure the server to use LDAP for authecao.

B. Conure etwork iterfaces ad roun iformao.

C. Istall a DTrace probe to capture the use of privilenes.

D. Disable ay etwork services that are NOT bein used.

E. Apply soware patches to correct security vulerabilies.

Answer: D, E


13/14

Question: 24

Due to chanes to the security policy of your ornaizao, access restrico must be applied to

systems. The chanes specify that access to systems throunh the p protocol is NOT allowed

accordin to the Huma Resources departmet, which has the 10.10.10.0/24 address space

assined. TCP wrappers have bee eabled for the p daemo, ad these les have bee conured:# cat /etc/hosts.allow

i.pd: ALL

# cat /etc/hosts.dey

i.pd: 10.10.10.0/24

Despite the implemeted conurao, Huma Resources is sll able to access systems throunh the

p protocol. What aco must be take

A. The p daemo must be restarted.

B. The ietd daemo must be restarted.

C. The etry i the hosts.dey le is wron ad must be chaned.

D. The etry i the hosts.allow le is wron ad must be chaned.

Answer: D

Question: 25

Packet lters ad rewalls are a importat compoet of ay defese-i-depth security strateny.

Which two types of threats ca IP Filter be deployed as a eecve coutermeasure anaist

(Choose two.)

A. a Christmas Tree sca

B. a aempt to lon i to a system usin SSH by a uauthorized user

C. a aempt to exploit a SQL ijeco vulerability i a web storefrot applicao

D. a aempt to exploit a buer overow vulerability i rpcbid, orinian from a host o a

authorized etwork

E. a aempt to exploit a buer overow vulerability i rpcbid, orinian from a host o a

uauthorized etwork

Answer: A, E


14/14

THANKS FOR TRYING THE DEMO OF OUR PRODUCT

Visit Our Site to Purchase the Full Set of Actual 1Z0-881 Exam Quesos With Aswers.


We Also Provide Pracce Exam Soware That Simulates Real Exam Eviromet Ad Has

May Self-Assessmet Features. Dowload Free Product Demo From:


Moey Back Guaratee

Check Out Our Customer Tesmoials

Documents

Pass4Sure 1Z0-881 Exam Questions