Given:

rpcinfo -p foo

If an attacker has penetrated a local area network (LAN), the attacker can use the rpcinfo command to gather intelligence about a system running RPC. When run against the host foo, which type of information will the command return to the attacker?

A system administrator hardens an application server with the Solaris Security Toolkit using their pre-existing JumpStart environment. When must a host security assessment be completed?

Network segmentation is a highly recommended mechanism to protect your JumpStart environment. What is the most secure configuration for protecting JumpStart servers in a data center?

The Solaris 9 OE is configured, by default, to create core files for all non-set-ID processes. These files are created in the working directory of the process. These files can, however, be created in an administrator-defined location. This is often done to restrict access to these files to prevent unauthorized disclosure of information. Which command can be used to create per-process core files in /var/core?

You are asked to manually verify a Solaris Security Toolkit configuration.

What should you do?

Which three methods are features of the Solaris Security Toolkit for management of the output generated during a run? (Choose three.)

You are asked to harden a SunFire 15K server. Where do you look for the best information on securely configuring domains and system controllers?

Given that the entry below is listed in the /etc/dfs/dfstab file:

share -F nfs -o rw=foo,root=foo,ro /export

Who can write to this file system?

Given:

$ showmount -e

What information is provided?

What information is collected by process accounting? (Choose two.)