CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. LPI
  5. 300-300

Free 300-300 Exam Braindumps (page: 4)

Page 3 of 15
PDF with 53 Questions

Which of the following options can be used to limit access to a Samba share? (Choose two.)

  1. untrusted users
  2. write list
  3. valid groups
  4. valid users
  5. accept list

Answer(s): C,D

Explanation:

To limit access to a Samba share, the valid users and valid groups options can be used. These directives specify which users or groups are allowed to access the share.
C . valid groups
This option restricts access to members of specified Unix groups.

D . valid users
This option restricts access to specified Unix users.


Reference:

Samba smb.conf man page



In case the following parameters are set in a Samba file share configuration:
create mask = 711
force create mode = 750
What are the effective permissions of a file created with the permissions 777?

  1. 066
  2. 027
  3. 777
  4. 761
  5. 751

Answer(s): E

Explanation:

The effective permissions of a file created with the permissions 777 can be calculated considering the create mask and force create mode.
create mask = 711 implies that the permission bits are ANDed with 0711, i.e., only the owner can read, write, and execute.
force create mode = 750 implies that certain permission bits are always set, specifically 0750, i.e., read, write, and execute for the owner, and read and execute for the group. The create mask reduces the permissions to 0711, and then force create mode adds the 0750 mask to the result.
Original permission: 777 AND with create mask (711): 711 OR with force create mode (750): 751 Thus, the effective permission is 751.


Reference:

Samba smb.conf man page - create mask



Which of the following are valid Samba backends to store user and group information? (Choose two.)

  1. sdb
  2. smbpasswd
  3. ldapsam
  4. krb
  5. smb

Answer(s): B,C

Explanation:

smbpasswd: This backend uses the smbpasswd file to store user and group information. It is a simple plaintext file format that holds password hashes and other account information. ldapsam: This backend utilizes LDAP (Lightweight Directory Access Protocol) to store user and group information. LDAP is a more scalable and flexible option suitable for larger environments.
Other Options:
sdb, krb, smb: These are not valid Samba backends for storing user and group information.


Reference:

Samba User and Group Database Backends



How is the Global Catalog of an Active Directory domain accessed?

  1. Through LDAP queries to the ports 3268 (plain text) and 3269 (TLS encrypted).
  2. Through the share GCS SMB which is available on each domain controller.
  3. Through GCS records in the DNS sub zone _gc in the domain's DNS zone.
  4. Through LDAP queries to the base dn CN=GC in the standard LDAP directory.
  5. Through SRV records in the DNS sub zone _msgc in the domain's DNS zone.

Answer(s): A

Explanation:

Global Catalog: The Global Catalog is a distributed data repository that contains a searchable, partial representation of every object in every domain in a multi-domain Active Directory forest. Access Method: It is accessed through LDAP queries to specific ports:
Port 3268: For plain text (unencrypted) LDAP queries.
Port 3269: For LDAP queries encrypted with TLS.
Other Options:
GCS SMB share, GCS records, SRV records, CN=GC in LDAP: These do not provide the correct method to access the Global Catalog.


Reference:

Microsoft Documentation on Active Directory Global Catalog






Post your Comments and Discuss LPI 300-300 exam with other Community members:

300-300 Discussions & Posts