Free Practice Questions for Oracle 1z0-106 Exam

Option A (Correct):/lib64/securityis a common directory where PAM (Pluggable Authentication Module) libraries are stored for 64-bit systems.

Option D (Correct):/lib/securityis another directory where PAM libraries are stored, usually on 32-bit systems or as a fallback for 64-bit systems.

Option B (Incorrect):/etc/pam.dcontains configuration files for PAM modules but does not store the modules themselves.

Option C (Incorrect):/usr/libis a general directory for libraries but does not specifically store PAM modules.

Option E (Incorrect):/var/libis typically used for variable state information and is not relevant for storing PAM modules.

Oracle Linux Reference:Refer to:

Oracle® Linux 8: Managing Authentication

Option B: journalctl -p err shows only error log level.

Explanation:

The -p or --priority option in journalctl filters messages by their priority level.

When specifying asingle priority level, journalctl shows messagesonlyat that level.

The priority levels, as per syslog standards, are:

0: emerg

1: alert

2: crit

3: err

4: warning

5: notice

6: info

7: debug

Therefore, journalctl -p err displays messages with priorityerr (3)only.

Oracle Linux Reference:

Oracle® Linux 8: Managing Log Files- Section onFiltering Output withjournalctl:

"Use the -p option to display messages from the journal that have a specific priority level."

Example:

# journalctl -p err

Option D: journalctl -k shows kernel logs since the last boot.

Explanation:

The -k or --dmesg option filters messages from the kernel, equivalent to the output of the dmesg command.

This option implies -b, which limits the output to messages from the current boot.

Therefore, journalctl -k displays kernel messages since the last boot.

Oracle Linux Reference:

Oracle® Linux 8: Managing Log Files- Section onViewing Kernel Messages:

"Use the journalctl -k command to display kernel messages since the last system boot."

Example:

# journalctl -k

Option E: journalctl -p 6 shows all info log level messages and above.

Explanation:

When specifying a single numeric priority, journalctl displays messages withthat priority level and higher priority levels(i.e., lower severity).

Priority levels are ordered from 0 (highest severity) to 7 (lowest severity).

Therefore, journalctl -p 6 shows messages with priorities:

0 (emerg)

1 (alert)

2 (crit)

3 (err)

4 (warning)

5 (notice)

6 (info)

This includesinfo level messages (6)and all higher priority messages.

Oracle Linux Reference:

Oracle® Linux 8: Managing Log Files- Section onFiltering Output with journalctl:

"When you specify a single priority level, journalctl shows messages at that level and higher severity."

Example:

# journalctl -p 6

Why Other Options Are Not Correct:

Option A:journalctl -bl -p err fails if journal persistence is not configured.

Explanation:

The -b option displays messages from the current boot. This works even if journal persistence isnotconfigured because the logs from the current boot are stored in volatile memory (/run/log/journal).

Therefore, the command doesnot failif journal persistence is not configured.

Oracle Linux Reference:

Oracle® Linux 8: Managing Log Files- Section onJournal Volatility:

"By default, the journal stores logs in volatile memory and does not persist logs across reboots unless persistent storage is configured."

Option C:journalctl -p notice..warning shows all messages from notice to warning log level since the last boot.

Explanation:

The -p option allows specifying arangeof priorities. However, the correct order for the range should be from thehigher priority (lower number)to thelower priority (higher number).

Also, the priorities should be specified in the correct sequence, and ranges are inclusive.

Moreover, journalctl by default shows messages from all boots unless limited by the -b option.

Therefore, without -b, it does not limit messages to "since the last boot," making the statement incorrect.

Correct Command:

To display messages fromwarning (4)tonotice (5), the command should be:

# journalctl -p warning..notice -b

But even then, the priorities need to be specified correctly, and the command in Option C is incorrect.

Conclusion:

OptionsB,D, andEare correct because they accurately describe the behavior of the journalctl command in filtering and displaying log messages based on priority levels and sources.

Option D (Correct):The commandsetfacl --modify user:user2:r-x my_directorysets an Access Control List (ACL) entry that givesuser2read (r) and execute (x) permissions onmy_directory. The execute (x) permission is required to allow navigation into the directory.

Option A (Incorrect):The--defaultoption would set the default ACL for future files or directories created withinmy_directory, not the directory itself.

Option B (Incorrect):This option gives only read (r) permission, but without execute (x) permission,user2cannot navigate into the directory.

Option C (Incorrect):The-xoption is used to remove an ACL entry, not modify it.

Option E (Incorrect):This modifies the ACL for the grouptestinstead of the useruser2.

Oracle Linux Reference:Refer to:

Oracle® Linux 8: Using Access Control Lists

Thednf infocommand provides detailed information about an installed package. When used with the path of a binary (such as/usr/bin/gzip), it shows the package that provides the binary along with detailed information like the version, release, architecture, size, source, repository, summary, URL, and license.

Explanation of Answer A:Oracle Linux 8 uses cgroups version 2 (cgroups v2) by default. cgroups v2 is a unified hierarchy system that introduces improvements over version 1, including a simplified interface and better resource management capabilities.

Explanation of Answer B:A control group (cgroup) is a mechanism for grouping processes and setting limits or parameters on their resource usage, such as CPU, memory, or I/O. These limits and parameters are configured and managed through the cgroups filesystem.

Option A (Correct):The configuration lineauthpriv.* /var/log/authwould direct all messages of theauthprivfacility (which includes sensitive authentication messages) to the/var/log/authfile. The log entries provided, which include authentication-related messages from PAM (pam_unix), would be logged due to this setting.

Option B (Incorrect):The*.emerg *setting logs emergency messages to all users, not specifically the provided log output.

Option C (Incorrect):This setting logs various non-authentication-related messages to/var/log/messages. It specifically excludesauthpriv.

Option D (Incorrect):This setting appears to be commented out and incorrect for the logging behavior described.

Option E (Incorrect):Thecron.*setting logs cron messages, unrelated to the provided authentication logs.

Oracle Linux Reference:Refer to:

Oracle® Linux 8: System Logging with rsyslog

Option A (Correct):The rule is applied to both IPv4 and IPv6 packets. Theinettable is used for filtering both IPv4 and IPv6 traffic, and since the rule is added to theinettable, it affects both IP versions.

Option E (Correct):The rule drops TCP packets inbound on port 80. The rule specifies theinputchain in thefiltertable, and it drops (drop) all TCP traffic (tcp) destined for port 80 (dport 80), which means any incoming TCP traffic on port 80 will be dropped.

Option B (Incorrect):The command does not automatically update the configuration on disk; the rule is applied immediately in memory but does not persist across reboots unless explicitly saved.

Option C (Incorrect):The rule specifies TCP packets only, not all traffic. Therefore, it does not drop traffic for protocols other than TCP.

Option D (Incorrect):Although this statement is correct, it is less specific than Option A, which is more accurate because it mentions both IP versions.

Option F (Incorrect):The rule applies to inbound traffic, not outbound, so it does not drop outbound traffic.

Oracle Linux Reference:Refer to:

Oracle® Linux 8: Managing Firewall Rules with nftables

Explanation of Answer E:This option correctly matches the Kubernetes components with their descriptions:

Kubectl- d. Command-line interface used to control Kubernetes

Etcd- f. Stores configuration data relating to the cluster

Kubelet- c. Agent that allows nodes to communicate with the API

Kube-proxy- e. Performs networking functions and routes network traffic

Kube-apiserver- a. Processes and validates requests and performs operations

Kube-scheduler- b. Determines where containers should run based on resource availability

Explanation of Answer A:Thenmcli con addcommand is used to create a new network connection namedeth2. The parameters specify the connection type (ethernet), the interface name (ifname eth2), and the connection name (con-name eth2), creating a new configuration for theeth2interface.

Explanation of Answer C:Theipv4.addressparameter assigns a static IPv4 address (192.168.0.5/24) to theeth2connection. Therefore, the connection will have this static IP once created.