303-200 LPI 303-200: LPIC-3 Exam 303: Security, version 2.0 exact Exam Questions

303-200: LPIC-3 Exam 303: Security, version 2.0

Last Update 20 hours ago Total Questions : 60

The 303-200: LPIC-3 Exam 303: Security, version 2.0 content is now fully updated, with all current exam questions added 20 hours ago. Deciding to include 303-200 practice exam questions in your study plan goes far beyond basic test preparation.

You'll find that our 303-200 exam questions frequently feature detailed scenarios and practical problem-solving exercises that directly mirror industry challenges. Engaging with these 303-200 sample sets allows you to effectively manage your time and pace yourself, giving you the ability to finish any 303-200: LPIC-3 Exam 303: Security, version 2.0 practice test comfortably within the allotted time.

Question # 11

What effect does the configuration SSLStrictSNIVHostCheck on have on an Apache HTTPD virtual host?

The clients connecting to the virtual host must provide a client certificate that was issued by the same CA that issued the server ' s certificate.

The virtual host is served only to clients that support SNI.

All of the names of the virtual host must be within the same DNS zone.

The virtual host is used as a fallback default for all clients that do not support SNI.

Despite its configuration, the virtual host is served only on the common name and Subject Alternative Names of the server certificates.

Question # 12

How are SELinux permissions related to standard Linux permissions? (Choose TWO correct answers.)

SELinux permissions overnde standard Linux permissions.

standard Linux permissions override SELinux permissions.

SELinux permissions are verified before standard Linux permissions.

SELinux permissions are verified after standard Linux permissions.

Question # 13

Which of the following statements are true regarding the certificate of a Root CA? (Choose TWO correct answers.)

It is a self-signed certificate.

It does not include the private key of the CA

It must contain a host name as the common name.

It has an infinite lifetime and never expires.

It must contain an X509v3 Authority extension.

Question # 14

When OpenVPN sends a control packet to its peer, it expects an acknowledgement in 2 seconds by default. Which of the following options changes the timeout period to 5 seconds?

-tls-timeout 5

-tls- timeout 500

-tls- timer 5

-tls- timer 500

Question # 15

What is the purpose of IP sets?

They group together IP addresses that are assigned to the same network interfaces.

They group together IP addresses and networks that can be referenced by the network routing table.

They group together IP addresses that can be referenced by netfilter rules.

They group together IP and MAC addresses used by the neighbors on the local network.

They group together IP addresses and user names that can be referenced from /etc/hosts allow and /etc/hosts deny

Question # 16

Which command, included in BIND, generates DNSSEC keys? (Specify ONLY the command without any path or parameters.)

Question # 17

Which of the following sections are allowed within the Kerberos configuration file krb5.conf? (Choose THREE correct answers.)

[plugins]

[crypto]

[domain]

[capaths]

[realms]

Question # 18

Which of the following lines in an OpenSSL configuration adds an X 509v3 Subject Alternative Name extension for the host names example.org and www.example.org to a certificate ' ?

subjectAltName = DNS: www example.org, DNS:example.org

extension= SAN: www.example.org , SAN:example.org

subjectAltName: www.example.org , subjectAltName: example.org

commonName = subjectAltName= www.example.org , subjectAltName = example.org

subject= CN= www.example.org , CN=example.org