200-201 Free Practice Test

A developer is working on a project using a Linux tool that enables writing processes to obtain these required results:
If the process is unsuccessful, a negative value is returned.
If the process is successful, 0 value is returned to the child process, and the process ID is sent to the parent process.
Which component results from this operation?

1. A. parent directory name of a file pathname
2. B. process spawn scheduled
3. C. macros for managing CPU sets
4. D. new process created by parent process

Correct Answer: D
There are two tasks with specially distinguished process IDs: swapper or sched has process ID 0 and is responsible for paging, and is actually part of the kernel rather than a normal user-mode process. Process ID 1 is usually the init process primarily responsible for starting and shutting down the system. Originally, process ID 1 was not specifically reserved for init by any technical measures: it simply had this ID as a natural consequence of being the first process invoked by the kernel. More recent Unix systems typically have additional kernel components visible as 'processes', in which case PID 1 is actively reserved for the init process to maintain consistency with older systems

What is a difference between inline traffic interrogation and traffic mirroring?

1. A. Inline inspection acts on the original traffic data flow
2. B. Traffic mirroring passes live traffic to a tool for blocking
3. C. Traffic mirroring inspects live traffic for analysis and mitigation
4. D. Inline traffic copies packets for analysis and security

Correct Answer: A
Inline traffic interrogation analyzes traffic in real time and has the ability to prevent certain traffic from being forwarded Traffic mirroring doesn't pass the live traffic instead it copies traffic from one or more source ports and sends the copied traffic to one or more destinations for analysis by a network analyzer or other monitoring device

Refer to the exhibit.

Which two elements in the table are parts of the 5-tuple? (Choose two.)

1. A. First Packet
2. B. Initiator User
3. C. Ingress Security Zone
4. D. Source Port
5. E. Initiator IP

Correct Answer: DE

Which security principle requires more than one person is required to perform a critical task?

1. A. least privilege
2. B. need to know
3. C. separation of duties
4. D. due diligence

Correct Answer: C

What is the difference between deep packet inspection and stateful inspection?

1. A. Deep packet inspection gives insights up to Layer 7, and stateful inspection gives insights only up to Layer 4.
2. B. Deep packet inspection is more secure due to its complex signatures, and stateful inspection requires less human intervention.
3. C. Stateful inspection is more secure due to its complex signatures, and deep packet inspection requires less human intervention.
4. D. Stateful inspection verifies data at the transport layer and deep packet inspection verifies data at the application layer

Correct Answer: B