Q1) Chroot jail is used to _______ process and its children by ________ to the supplied directory name.
- isolate, changing the root directory
- -> change, the name
- execute, renaming it
- All of the above
Reason : A chroot jail is a way to isolate a process and its children from the rest of the system. It should only be used for processes that don't run as root, as root users can break out of the jail very easily
Q2) Taliking about FreeBSD jail, which of the following is true ?
- It can only bind to sockets with specified IP address and authorized ports
- -> It can communicate with processes inside and outside of jail
- Root is limited (example: cannot load kernel modules)
- None of the above
Reason : The jail mechanism is an implementation of FreeBSD's OS-level virtualisation that allows system administrators to partition a FreeBSD-derived computer system into several independent mini-systems called jails, all sharing the same kernel, with very little overhead.
Q3) Which of the following is incorrect for System call interposition ?
- It tracks all the system service requests of processes.
- Each system request can be modified or denied.
- -> It is impossible to implement tools to trace, monitor, or virtualize processes.
- None of the above.
Reason: Abstract: System call interposition is a powerful method for regulating and monitoring program behavior. A system call correlating method is proposed to identify the coherent system calls belonging to the same process from the system call sequence.
Q4) Which of the following is a computer security utility which limits an application's access to the system by enforcing access policies for system calls ?
- -> systrace
- NetBSD
- ptrace
- None of the above
Reason: Systrace is a computer security utility which limits an application's access to the system by enforcing access policies for system calls. This can mitigate the effects of buffer overflows and other security vulnerabilities.
Q5) Which of the following uses a call back mechanism in the kernel module to redirect system calls ?
- systrace
- -> ptrace
- ostia
- NetBSD
Reason: ptrace is a system call found in Unix and several Unix-like operating systems. By using ptrace (the name is an abbreviation of "process trace") one process can control another, enabling the controller to inspect and manipulate the internal state of its target.
Posts
 Chroot jail is used to _______ process and its children by ________ to the supplied directory name. isolate, changing the root directo...){kind=link}
No comments :
Post a Comment