Explore essential Linux security fundamentals and ecosystem tools with this quiz focused on topics like permissions, authentication, auditing, and process management. Improve your understanding of core practices and tools vital for maintaining secure Linux environments.
What command would you use to change the permissions of a file named 'config.txt' so that only the owner has read and write access, while others have no access?
Explanation: The correct answer is 'chmod 600 config.txt', which sets the permissions so that only the owner can read and write, and no one else has access. 'chown' is used for changing file ownership, not permissions. 'chperm' is not a valid Linux command. 'chmod rwx config.txt' does not provide a numeric value and would result in a syntax error. Therefore, only 'chmod 600' achieves the intended security setting.
Which Linux security framework allows system administrators to configure how authentication, account, password, and session management are handled through modular components?
Explanation: PAM (Pluggable Authentication Modules) lets administrators manage authentication and related functions with modular components. PAX relates to memory protection, not authentication. PRM is not a standard Linux security framework, and RAM refers to system memory, unrelated to security modules. Thus, PAM is the correct component for this purpose.
If you need to monitor and record specific events such as file changes or user actions for security auditing on a Linux system, which tool would you use?
Explanation: auditd is the Linux Auditing system daemon that records events for security auditing, making it the correct choice. 'authd' is commonly confused with authentication daemons but is not an auditing tool. 'audity' is a misspelling and not a standard tool, while 'editd' does not exist. Only auditd performs the required monitoring and logging.
Which Linux command-line tool allows you to view running processes and their real-time resource usage, which can help in identifying malicious or suspicious activity?
Explanation: The 'top' command displays active processes and resource usage, which is useful for security monitoring. 'tip' is a terminal program, unrelated to process viewing. 'tap' does not refer to a process manager, and 'topp' is a typo. Thus, 'top' is the only correct tool in this context.
Suppose you want to check active listening ports and associated services on your Linux system for potential vulnerabilities. Which command should you use?
Explanation: The 'netstat -tuln' command lists currently active listening ports and related information, aiding security assessment. 'nekstat' and 'netstart' are misspellings or non-existent commands, while 'netscan' is not a standard Linux utility for listing ports. Therefore, 'netstat -tuln' is the correct and effective option.