1. True or false: Apache can only be run on
Windows.
Answers:
• TRUE
• False
2. The function of AllowOverride directive is
Answers:
• Allows users to
change the default Log format
• Tells Apache to process or not the .htaccess file and what
kind of directives are allowed in it
• Tells Apache to
overwrite the default environment variables
• Allows users to
overwrite exiting server name and port number
3. The UserDir directive:
Answers:
• Allows a user's
home directory to be accessible.
• None of these
• Specifies a directory underneath the user's home directory
where web files are located
• Specifies a
directory under which all files can only be accessed by a specific user
4. Apache is?
Answers:
• Web Server Software
• A machine
language
• A database
language
• A scripting
language
5. Which directive provides mapping from a URI to a directory - usually a directory outside of your DocumentRoot?
Answers:
• Directory
• Alias
• AccessFileName
• CacheRoot
6. mod_rewrite provides a way to modify incoming URL requests, dynamically, based on which of the following criteria?
Answers:
• regular expression rules
• environment
variables
• None of these
• CGI scripts
7. Of the following, which is the most effective tool to mitigate Denial of Service attacks?
Answers:
• lowering the
KeepAliveTimeout directive
• a firewall
• use of a
threaded mpm
• lowering the
timeout directive
8. What can be done to make a server with AuthType Basic more secure?
Answers:
• Include the mod_ssl module
• None of these
• Include the
XBitHack directive
• Nothing can be
done because the authentication credentials are always passed openly with Basic
authentication
9. What does the Trace method do?
Answers:
• An HTTP request method that returns a diagnostic trace of
actions it takes
• An HTTP request
method that asks proxy to relay the content of another host
• A SSL method
that logs errors
• A SSL method
that tracks cookies
10. Who is the default user that has permission to the ServerRoot Directories?
Answers:
• The root user
• Anyone with
internet access
• All users on the
network
• A user group
11. The AllowOverride directive works only in which of the following sections?
Answers:
• <Files>
• <Directory>
• <Proxy>
• <Location>
12. What is MIME?
Answers:
• An email
standard
• A web standard used to to determine the type of a file from
its extension
• A web standard
for the handling of user credentials
• A network
protocol
13. Which of the following is true about the Apache HTTP Server?
Answers:
• It is not an
Application Server
• All of these
• It is actively
being developed
• It comes with an
unrestricted license
14. Why is it important to set up a proxy?
Answers:
• It doesn't
require the use of a firewall
• Helps clear the
cache
• Better performance/improved security
• Improves the
aesthetic of the website
15. The Apache binary under Unix is called:
Answers:
• cgi-bin
• apache.exe
• htdocs
• httpd
16. True or False? The files and directories underneath the DocumentRoot make up the basic document tree which will be visible from the web.
Answers:
• False
• True
17. With SSI, it is possible to configure output format of which of the following?
Answers:
• Format in which
file sizes are returned
• All of the above
• Format of error
messages
• Format in which
time isreturned
18. What character(s) in a configuration file is used to indicate a comment?
Answers:
• "!"
• "//"
• "\\"
• "#"
19. The DocumentRoot directive is set in which of the following configuration files?
Answers:
• server.conf
• httpd.conf
• apache.conf
20. The Apache HTTP Server ("httpd") is a project of which of the following groups:
Answers:
• The Apache Software Foundation.
• Jakarta Open
Source Community
• Gnu Free
Software Foundation
• the Linux Open
Source Community
21. Which of the following is considered the main Apache configuration file?
Answers:
• .htaccess
• httpd.conf
• apache.conf
• server.conf
22. What does TCP/IP stand for?
Answers:
• Transmission Control Protocol/Internet Protocol
• Textual Control
Protocol/Internet Protocol
• Tracking Control
Protocol/Internal Protocol
• Transmission
Control Protocol/Infrastructure Protocol
23. What is a good reason to log user activity?
Answers:
• Illuminate
marketing problems
• Know how ofter
content is viewed
• Know who is
repeatedly visiting the site
• All of these
24. If you are in a hosting situation where you only have .htaccess files to work with, you may need use which of the following modules?
Answers:
•
authn_file_module
• mod_alias
• None of these
• mod_rewrite
25. What does the directive <VirtualHost> do?
Answers:
• All of these
• Specifies the
port that is in use
• Introduces a
block of text containing directives to one host
• Specifies whcih
IP address the site is hosting
26. What purpose does the mod_status module serve?
Answers:
• None of these
• If the server
has too many File Descriptors open or exceeds certain memory limits(specified
by the admininistrator), an entry will be included in the logs.
• The mod_status
module has been deprecated in favor of the new mod_server_info module
• It allows the server to display a web page containing
statistics about the web server's current state, including worker processes and
active connections.
27. A beta test site should:
Answers:
• Be separate and identical to the real site
• Be separate but
have differing features from a the real site
• Be scaled up
from the real site
• Be the real site
28. Which should always be used as the path separator in Apache httpd configuration files, even for Windows?
Answers:
• ":"
• "\"
• "/"
• ","
29. Which of the following must be true for the "Require local" directive to allows access to the server?
Answers:
• The client and
the server address of the connection are different.
• None of these
• The client address matches 127.0.0.0/8.
• You are proxying
content to your server.
30. The authorization providers implemented by mod_authz_host serve what purpose?
Answers:
• They control
visitor access to parts of the server though it is deprecated in favor of the
new mod_access_compat module.
• None of these
• They control access to particular parts of the server based
on the client hostname or IP address.
• They allow
administrators to indicate routing information for proxy servers.
31. Why can't Apache logs be rotated by moving or deleting existing logs while the server is running?
Answers:
• Chunks of the
Apache logs are stored in memory before being written to the file system.
Therefore, moving or deleting log files will lead inconsistent logging.
• Using the
mod_logio module, the httpd server CAN actually rotate logs files while
running.
• The Apache httpd will continue writing to the old log file
as long as it holds the file open. Therefore, the files cannot be deleted or
moved.
• None of these
32. What does the DirectoryIndex command do?
Answers:
• Specifies a list of resources to look for when the client
requests an index of the directory name
• Configures the
Index Directory
• Sorts the
directory when a client requests an index of a directory
• Gives users more
control of information sorted
33. What directive must be used to set the order of the Allow and Deny commands?
Answers:
• Bind Address
• Port
• None, they are
applied by the order in which they appear in your file
• Order
34. Which of the following are characteristics of IP-based Virtual Hosting?
Answers:
• server has a
different IP address/port combination for each IP-based virtual host.
• The machine
hosting the server has several physical network connections
• The machine
hosting the server has several virtual interfaces
• Any of these
35. Which of the following is not a freeware database manager?
Answers:
• NoSQL
• DJANGO
• Firebird
• MySQL
36. Which of the following is a module compiled separately from the Apache httpd binary and can be loaded on-demand?
Answers:
• Directive
• SSI
• Handler
• DSO
37. You can tell Apache to parse any file with a particular file extension, such as .shtml, with the following directives: AddType text/html .shtml AddOutputFilter INCLUDES .shtml. What is the disadvantage to this approach?
Answers:
• Any change made
to the .shtml will require a server restart
• None of these
• if you wanted to add SSI directives to an existing page, you
would have to change the name of that page, and all links to that page, in
order to give it a .shtml extension
• Every new
extension included through the filter requires a new DSO to be compiled into
the Apache core.
38. Which of the follow directives cannot be overridden in a .htaccess file?
Answers:
• AuthType
• Allow
• DirectoryIndex
• LogFormat
39. The directive RewriteLog does what?
Answers:
• Enables/Disables
the rewriting engine
• Defines an
external mapname file
• Sends logging to the specified Filename
• Controls the
verbostiy of logging
40. Which of the following is not a result of using .htaccess files?
Answers:
• Users can make configuration changes and to access
directories for which they wouldn't normally have access, provided the
directory is not owned by ''root''.
• The .htaccess
file is loaded every time a document is requested.
• None of these
• httpd will look
in every directory for .htaccess files
41. Which of the following is an effect of using DSO's?
Answers:
• There is no
noticeable affect
• None of these
• It increases the server startup time.
• It decreases the
server startup time.
42. What is the drawback for using the <IfModule> directive?
Answers:
• None of these
• it can suppress useful error messages about missing modules.
• It only
functions for statically compiled modules.
• It ignores DSO's
43. What character may be used as the last character on a line in a configuration file to indicate that the directive continues onto the next line?
Answers:
• ":"
• "\"
• "/"
• ";"
44. What is the result of Options +Includes?
Answers:
• It tells Apache that you want to permit files to be parsed
for SSI directives
• None of these
• It tells Apache
to allow system environment variables to override httpd command line variables.
• It tells Apache
that you want to permit remote content into a web page
45. What security risk arises when users have write access to directories where Apache writes its logs?
Answers:
• Someone can gain access to the uid that the server is
started as, which is normally root.
• Write
permissions to the log directory does not pose a significant security risk.
• None of these
• Write access to
log directories indirectly opens access to the Apache server bin/ directory.
46. The directive Alias can be used for:
Answers:
• Rationalizing directories spread throughout the system/the
storage of documents in other directories
• Allows you to
run CGI scripts
• Assigning
directories an Alias
• Hiding a
directory from the user
47. What is the result of using the directive: XBitHack ON ?
Answers:
• XBitHack tells Apache to parse files for SSI directives if
they have the execute bit set
• None of these
• XBitHack ON
directive allows CGI scripts to load and run text files as if the executable
bit were set.
• XBitHack ON
directive allows CGI scripts to run executable scripts on the file system.
48. Why is it significant that the SetEnv directive runs late during request processing?
Answers:
• Because variables
set with SetEnv will override variables in the httpd.conf file
• Because
variables set with SetEnv will be ignored by all DSO's.
• Because directives such as SetEnvIf and RewriteCond will not
see the variables set with SetEnv
• None of these
49. Which of the following is true regarding Apache server and te <VirtualHost> directive?
Answers:
• None of these
• The Apache HTTP
Server should be configured in a way such that it relies on DNS for parsing of
the configuration files.
• When the server
is not configured for DNS parsing of config files, the server is more prone to
denial and theft of service attacks.
• All of these
50. Which of the following is not an essential subdirectory of a web site?
Answers:
• htdocs
• cgi-bin
• logs
• conf
51. Httpd is a modular server. By default, a base set of modules is included in the server at:
Answers:
• None of these
• Compile time
• There are no
base set of modules because Apache is dynamic.
• Runtime
52. Which apache directive contains the less server response header details?
Answers:
• UseCanonicalName
Off
• ServerTokens Prod
• ServerSignature
Minor
• ServerSign Major
• ServerSignature
Prod
53. <Directory />AllowOverride None</Directory> has what effect on the server
Answers:
• It prevents the use of .htaccess files in all directories
apart from those specifically enabled.
• It forces the
server to ignore directives specified by the .htaccess files in the given
directory.
• It informes the
server that .htaccess directives in a given directory will not override
directives from httpd.conf.
• None of these
54. Which of the following is not a sufficient solution to limit the security risks of Server Side Includes (SSI)?
Answers:
• SSI-enabled
files should have a separate extension, such as the conventional .shtml
• A server
administrator can enable suexec
• Ensure that all SSI files are SSL enabled.
• Disable the
ability to run scripts and programs from SSI pages. To do this replace Includes
with IncludesNOEXEC in the Options directive
55. Given the following directive "<IfDefine ClosedForNow> ", which of the following is true?
Answers:
• The
<ClosedForNow> directive has been set in the .htaccess or in a
<VirtualHost> segment.
• The httpd server may have been started with httpd
-DClosedForNow.
• None of these
• The server is
has been instructed to temporarily stop accepting requests
56. What is an environment variable that is a part of Apache SSL?
Answers:
• HTTPD
• HTTPS_CIPHER
• MOD_SSL
• HTTPS_CLIENT
57. Which of the following is not a built-in handler in the standard distribution?
Answers:
• filter-info
• imap-file
• type-map
• send-as-is
58. What protocol is used to avoid revealing a password?
Answers:
• Authentication
Protocol
• Challenge/Handshake Protocol
• SSL
• HTTPS
59. Which of the following situations would prevent an HTTP response from being cached by the httpd server?
Answers:
• The response includes a "Vary:" header containing
the match-all "*"
• The response
contains an "Authorization:" header and an "s-maxage",
"must-revalidate" or "public" option in the
"Cache-Control:" header.
• The response has
an HTTP status code of 300 or 301.
• None of these
60. Which of the following describes how the mod_cache_disk module ensures that multiple URLS do not collide with one another?
Answers:
• It creates a 22
character hash of the URL being requested and stores the information in memory.
If the cache memory passes the limit set in the .htaccess config file, the data
is then stored onto disk.
• None of these
• It creates a 22 character hash of the URL being requested
and which is turned into a filename prefix to store the data.
• It creates a 22
character hash of the URL being requested. It then stores the cached data in a
file using the hash as a filename. a filename prefix to store the data.
61. What character(s) in a configuration file is used to indicate a comment?
Answers:
• "\\"
• "!"
• "//"
• "#"
62. Which should always be used as the path separator in Apache httpd configuration files, even for Windows?
Answers:
• "\"
• ":"
• ","
• "/"
63. What character may be used as the last character on a line in a configuration file to indicate that the directive continues onto the next line?
Answers:
• ":"
• "/"
• ";"
• "\"
No comments:
Post a Comment