January 14, 2013
1. What is Mandatory Access Control? Why is it better than Discretionary Access Control?
* Mandatory access control (MAC) refers to a type of access control by which the operating system constrains the ability of a subject or initiator to access or generally perform some sort of operation on an object or target.
* IT OFFERS BETTER SECURITY
2. What are the three states of SELinux?
* Enforcing - The default state, wherein SELinux security policy is enforced.
...view middle of the document...
What two files are used to configure TCP Wrappers?
* /etc/hosts.allow and /etc/hosts.deny
5. What keyword in TCP Wrappers matches any daemon or client?
* "EXCEPT" command
6. Given the following entry in TCP Wrappers, what will happen when a client at address 172.16.24.100 tries to acces a web site running on this server?
* since your ip matches in both the access and deny hosts files, but since your ip matches in the first one, you will be allowed access and the hosts.deny part will be ignored.
7. What is a chroot jail?
* the common expression used to describe a section of a filesystem that is sectioned off for a particular user.
8. When might a chroot jail not work?
* When a copy of "su" is not installed in the jail.
9. What is the name of the kernel component that uses the iptables rules to filter network traffic?
Create an iptables rule that will block all traffic from 10.14.34.207 and not let the sender know that the traffic was blocked.
* iptables --insert INPUT 0 --source 10.14.34.207 --jump DROP
iptables -A INPUT -s 10.14.34.207 -j DROP