Partial preview of the text
Download Linux+ (XK0-006) Securing Your System Test Practice 2026 Guide and more Exams Operating Systems in PDF only on Docsity!
Linux+ (XK0-006) Securing Your System Test
Practice 2026 Guide
Linux+ (XK0-006) Securing Your System Test Practice 2026 Guide What isthe core security feature of Linus? How does Linux control access to files and directories? What are the three tiers of permissions in Linux? ‘Whar docsthe Owner tier representin Linux permissions? What does the Group tier represent in Linux permissions? Who arc considered ‘Others’ in Linux permissions? How can you view the assigned ownerand group fora file or directory? Whar is a recommended practice for user account groups in li NUxX? What happens when auser createsa file or ditectory in Linux? What command is used to change the owner of a file or directory? Whats the format of the ‘chown’ command? What does the '-R' option do inthe 'chown' command? What command is used to change the group assigned to a file or directo Whatis the format of the ‘chgrp' command? Who can change the group of a file or dicectory in Linus? What can the root user do regarding file and directory permissions? Can the owner of afile change its group to any group? File and directory permissions. By assigning cach file and directory an owner and allowing that owner to set security settings. Owner, Group, and Others. The single userassigned as the ownerof the file or directory. A single group of users assigned to the [ile ordirectory. Any useraccounttharis not the ownernor in the assigned usergroup. By using the command ‘Is -I. Assign cach useraccountto a separategroup with the same name as the user account, The system assigns the user as the owner and uses their primary group as the group for the file or directory. The ‘chown’ command. chown [options] newowner filenames. Tr recursively changes the owner of al files under the specified directory. The ‘chgep’ command. chgrp [options] newgroup flenames, The file owner or the root uscraccount. Change the owner and group to any user or group on the system. No, they can only change it to a group they belong to. 16 What does the ‘chown’ command allow you to do simultancously? What is the significance of file and directory permissions in Linux? Whatare the three types of permission controls in Linux? What does the Read permission allow? What does the Write permission allow? What does the Execute permission allow? How many different permissions can be assigned to cach fileand dircetoryin Linux? Whatdoesthe 'ls-l' command display? In the permission suring ‘rw’, what do"! and 'w" represent? What docs a dash (-) indicate in the permission sting? ‘What do the first three characters in the permission string represent? Whatdo the second set of three characters in the permission string represent? What do the lastthree characters in the permission string represent? What does the symbolic mode ‘u+1' mean? ‘What does the symbolic mode 'g-w' mean? What does the symbolic mode 'o=x' mean? How can you combine letter codes in a single chmod command? ‘What is the purpose of the chmod command? Whardoes the 'u' stand forin symbolic mode? Whatdoes the 'g' stand lorin symbolic made? Change both the owner and group assigned to a fle or directory. They control accessand security for files and ditectoties. Read, Write, Execute The ability to access the data stored within the ile or directory. The ability to modify the data stored within the file or directory. The ability to run the file on the system orlist the files contained in the directory. Nine different permissions. The first column shows the permissions assigned to cach file and directory. “r' represents read permission, and “w' represents write permission, It indicates that the permission is not scr. ‘The owner permissionsin the orderof read, write, and execute. The group permissions for the file or dixectory. The permissions assigned to useraccounts thatare not the owner ora member of the group. Trmeans toadd cad permission for the owner. Trmeansto remove waite permission forthe group. Temcans to set execute permission as the only permission for others. By using '+' toadd, "- to remove, or =" to set permissions. ‘To change the permissionsof files and directories. Owner, Group. 2/6 What happens if the SUID bitis set on a file withour execute permission forthe owner? User mask feature User mask umaskcommand ewing current umask Ourpurof umask command Common umask values lorfiles and directories umask 000 umask 002 umask 022 umask 027 umask 077 umask 277 Setting umask value Overriding umask setting cbash_profile file Whatis the limitation of assigning permissionsfor files or directories ina basic Linux environment? Icis indicated by an uppercase 'S" in the owner's permission. Defines the default permissions Linux assigns to the file or directory. An octal value that represents the bits to be removed from the octal mode 666 ions for directories. permissions far files or the octal mode 777 permis Sets the user mask value, You can view your current umask setting by entering the command ‘umask’ on the command line. Shows four octal values; the first represents the mask forthe SUID (4), GUID (2), and sticky (1) bits assigned to files and directories created. A able showing umask values and their corresponding created file and directory permissions. Creates files with permissions 666 (rw-tw-rw-) and directories with permissions 777 (rwerwxtwx), ions 664 (rw. Creates files with perm -} and directories with permissions 77 (rwarwxr-x). Creates files with permissions 644 (rvw- and directories with permissions 755 (rwxr-xr-x). Creates files with permissions 640 (rw-r ). ---) and directories with permissions 750 (rwxr Creates [iles with permissions 600 (rw ). ~} and directories with permissions 700 (rwx- Creates files with permissions 400 (r } and directories with permissions 500 fe Normally secin a script thar the Linux system runsat login time, such as in the /erctprotilc file. Ifoverridden from the command line, it will only apply for the duration of your session. You can override the system default umaskseuing by adding’ t to the _bash_profile file in your SHOME directory, You can only assign permissions toa single group or uscr account. Whar is an Access Control List (ACL) in Linux? What permission bits are used in ACLs? Which commands are used to manage ACLs in Linux? What does the getfacl command do? Whathappens to basic security permissions when using getlacl? Whar is the syntaxto assign permissions using the setfacl command? How do you modify permissions using setlacl? What is the format to assign permissions fora uscrin ACL? Whatis the formar to assign permit ACL? sions foragroup in ‘What is the format to assign permissions for others in ACL? What values can be used for uid or gid in ACLS? What isthe primary advantage of using ACLs over basic permission settings? Can ACLs be used alongside basic permissions in Linux? What wypes of userscan be assigned permissionsin ACLS? ‘What docs a plus sign (+) indicate when listing file permissions in Linux? What command is used to view additional ACLs on a file? What is the purpose of a default ACL in a ditectory? Whatare the nwo main methods of access control in Linux? What does DAC stand for? An advanced method of file and divectory security that allows specifying multiple users ions. orgroupsand theirassigned permis Read, write, and execute permission bits. sctfacl and getfacl. Irallows you to view the ACLs assigned to a file or directory. Ifonly basic security permissionsare assigned, those will still appear in the getfacl output. setfac] [options] rule filenames. Use the -m option to modify permissions or the -x option to remove specific permissions. ulser|:uidsperms. glroup]:gid; olther]::perms. Eitherthe numerical user/group identification number orthe names. ACLsallowfor more granular control by assigning different permissions to multiple usersand groups. Yes, ACLs can be used in conjunction with basic permissions. Additional user accounts, groups, and others, Trindicates that the file has additional Access Control Lists (ACLs) applied. The getfacl command. It is automatically inherited by any file created in thar directory. Discretionary Access Control (DAC) and Mandatory Access Control (MAC). Discretionary Access Contel. 5/6