Test Bank Answers System Logging Rothwell Ch.25

Linux Essentials for Cybersecurity (Rothwell/Kinsey)

Chapter 25 System Logging

1) __________ provide administrators with useful information to aid in troubleshooting problems and identify potential hacking attempts.

A) Journals

B) System logs

C) Processes

D) Services

2) Which of the following logging services has existed since 1980?

A) syslog

B) journald

C) rsyslog

D) syslog-ng

3) Which of the following options for the syslogd command specifies the configuration file?

A) -r

B) -x

C) -f

D) -S

4) Which of the following is the standard location for log files to be placed by the syslogd and rsyslogd daemons?

A) /etc/default/rsyslog

B) /etc/syslog.conf

C) /etc/sysconfig/rsyslog

D) /var/log

5) The __________ file is the configuration file for the syslogd daemon that tells the daemon where to send the log entries it receives.

A) /etc/syslog.conf

B) /var/log/auth.log

C) /etc/default/rsyslog

D) /var/log/syslog

6) Which facility for the /etc/syslog.conf file logs message designed to place a timestamp in log files?

A) cron

B) uucp

C) mark

D) lpr

7) Which of the following priority levels for the /etc/syslog.conf file is the most serious?

A) warning

B) alert

C) debug

D) notice

8) Which of the following priority levels for the /etc/syslog.conf file is the least serious?

A) err

B) crit

C) info

D) emerg

9) A new section in the /etc/rsyslog.conf file called __________ allows you to provide settings for all log file entries.

A) GLOBAL DIRECTIVES

B) LOCAL DIRECTIVES

C) DIRECTIVES

D) None of the above

10) When using rsyslogd, most log rules are not stored in the /etc/rsyslog.conf file, but rather in files in the __________ directory.

A) /etc/rsyslog.d

B) /etc/syslog.conf

C) /var/log/cron

D) /etc/rsyslog.r

11) When creating your own /etc/syslog.conf entry, which of the following is the first step?

A) Use the logger command

B) Restart the syslogd server

C) Use the logrotate command

D) Modify the /etc/syslog.conf file

12) Which of the following options for the logger command specifies the facility and priority?

A) -s

B) -p

C) -t

D) -i

13) Which of the following options for the logger command logs the PID of the logger process?

A) -s

B) -p

C) -t

D) -i

14) Which of the following is a utility designed to ensure that the partition that holds the log files has enough room to handle the log files?

A) logger

B) syslogd

C) logrotate

D) rsyslogd

15) The __________ file is the primary configuration file for the logrotate command.

A) /etc/logrotate.conf

B) /usr/sbin/logrotate

C) /etc/logrotate.d

D) /usr/bin/logger

16) Which of the following settings in the /etc/logrotate.conf file specifies the compression utility to use when compressing backup log files?

A) compress

B) compresscmd

C) nocompress

D) create

17) Which of the following settings in the /etc/logrotate.conf file only rotates the log file if the size is at least the value specified by X.

A) rotate x

B) datetext

C) minsize X

D) mail address

18) On modern Linux systems, the logging process is handled by the __________ service.

A) systemd-journal

B) system-journal

C) system-journald

D) systemd-journald

19) Which of the following options to the journalctl command shows only kernel messages?

A) -r

B) -k

C) -a

D) --priority=value

20) In the Storage=value setting for the /etc/systemd/journald.conf file, the value can be set to all but which of the following options?

A) zero

B) persistent

C) auto

D) volatile