LPIC-3 Exam 303: Security, 2.0
Last Update May 18, 2024
Total Questions : 60
You will be glad to know that we serve better with the real exam topics related to your subject. We give you LPIC Level 3 303-200 questions answers. You can prepare them easily and quickly. LPI 303-200 exam dumps are also available with accurate exam content. All Exam questions of LPIC Level 3 303-200 Exam are related to latest LPIC-3 Exam 303: Security, 2.0 topics, let’s take a look:
Exam Name | LPIC-3 Exam 303: Security, 2.0 |
Exam Code | 303-200 |
Actual Exam Duration | 90 minutes |
Expected no. of Questions in Actual Exam | 60 |
Official Information | https://www.lpi.org/our-certifications/exam-303-objectives |
See Expected Questions | LPI 303-200 Expected Questions in Actual Exam |
Take Self-Assessment | Use LPI 303-200 Practice Test to Assess your preparation - Save Time and Reduce Chances of Failure |
Section | Weight | Objectives |
---|---|---|
Topic 325: Cryptography | 17% | 325.1 X.509 Certificates and Public Key Infrastructures Weight: 5 Description: Candidates should understand X.509 certificates and public key infrastructures. They should know how to configure and use OpenSSL to implement certification authorities and issue SSL certificates for various purposes. Key Knowledge Areas:
The following is a partial list of the used files, terms and utilities:
325.2 X.509 Certificates for Encryption, Signing and Authentication Weight: 4 Description: Candidates should know how to use X.509 certificates for both server and client authentication. Candidates should be able to implement user and server authentication for Apache HTTPD. The version of Apache HTTPD covered is 2.4 or higher. Key Knowledge Areas:
325.3 Encrypted File Systems Weight: 3 Description: Candidates should be able to setup and configure encrypted file systems. Key Knowledge Areas:
Weight: 5 Description: Candidates should have experience and knowledge of cryptography in the context of DNS and its implementation using BIND. The version of BIND covered is 9.7 or higher. Key Knowledge Areas:
|
Topic 326: Host Security | 16% | 326.1 Host Hardening Weight: 3 Description: Candidates should be able to secure computers running Linux against common threats. This includes kernel and software configuration. Key Knowledge Areas:
Terms and Utilities:
326.2 Host Intrusion Detection Weight: 4 Description: Candidates should be familiar with the use and configuration of common host intrusion detection software. This includes updates and maintenance as well as automated host scans. Key Knowledge Areas:
Terms and Utilities:
326.3 User Management and Authentication Weight: 5 Description: Candidates should be familiar with management and authentication of user accounts. This includes configuration and use of NSS, PAM, SSSD and Kerberos for both local and remote directories and authentication mechanisms as well as enforcing a password policy. Key Knowledge Areas:
Terms and Utilities:
326.4 FreeIPA Installation and Samba Integration Weight: 4 Description: Candidates should be familiar with FreeIPA v4.x. This includes installation and maintenance of a server instance with a FreeIPA domain as well as integration of FreeIPA with Active Directory. Key Knowledge Areas:
|
Topic 327: Access Control | 10% | 327.1 Discretionary Access Control Weight: 3 Description: Candidates are required to understand Discretionary Access Control and know how to implement it using Access Control Lists. Additionally, candidates are required to understand and know how to use Extended Attributes. Key Knowledge Areas:
Weight: 4 Description: Candidates should be familiar with Mandatory Access Control systems for Linux. Specifically, candidates should have a thorough knowledge of SELinux. Also, candidates should be aware of other Mandatory Access Control systems for Linux. This includes major features of these systems but not configuration and use. Key Knowledge Areas:
Terms and Utilities: getenforce, setenforce, selinuxenabled getsebool, setsebool, togglesebool fixfiles, restorecon, setfiles newrole, runcon semanage sestatus, seinfo apol seaudit, seaudit-report, audit2why, audit2allow /etc/selinux/* 327.3 Network File Systems Weight: 3 Description: Candidates should have experience and knowledge of security issues in use and configuration of NFSv4 clients and servers as well as CIFS client services. Earlier versions of NFS are not required knowledge. Key Knowledge Areas:
|
Topic 328: Network Security | 328.1 Network Hardening Weight: 4 Description: Candidates should be able to secure networks against common threats. This includes verification of the effectiveness of security measures. Key Knowledge Areas:
Terms and Utilities:
Weight: 4 Description: Candidates should be familiar with the use and configuration of network security scanning, network monitoring and network intrusion detection software. This includes updating and maintaining the security scanners. Key Knowledge Areas:
Weight: 5 Description: Candidates should be familiar with the use and configuration of packet filters. This includes netfilter, iptables and ip6tables as well as basic knowledge of nftables, nft and ebtables. Key Knowledge Areas:
Weight: 4 Description: Candidates should be familiar with the use of OpenVPN and IPsec. Key Knowledge Areas:
|
303-200 Questions Answers | 303-200 Test Prep | LPIC-3 Exam 303: Security, 2.0 Questions PDF | 303-200 Online Exam | 303-200 Practice Test | 303-200 PDF | 303-200 Test Questions | 303-200 Study Material | 303-200 Exam Preparation | 303-200 Valid Dumps | 303-200 Real Questions | LPIC Level 3 303-200 Exam Questions