Get Instant Access to SK0-005 Practice Exam Questions [Q39-Q54]

Share

Get Instant Access to SK0-005 Practice Exam Questions

Reliable Study Materials & Testing Engine for SK0-005 Exam Success!

NEW QUESTION # 39
A large number of connections to port 80 is discovered while reviewing the log files on a server. The server is not functioning as a web server. Which of the following represent the BEST immediate actions to prevent unauthorized server access? (Choose two.)

  • A. Stop all unneeded services and block the ports on the firewall
  • B. Run a checksum tool against all the files on the server
  • C. Audit all group privileges and permissions
  • D. Initialize a port scan on the server to identify open ports
  • E. Enable port forwarding on port 80
  • F. Install a NIDS on the server to prevent network intrusions

Answer: A,F

Explanation:
Explanation
The best immediate actions to prevent unauthorized server access are to stop all unneeded services and block the ports on the firewall. Stopping unneeded services reduces the attack surface of the server by eliminating potential entry points for attackers. For example, if the server is not functioning as a web server, there is no need to run a web service on port 80. Blocking ports on the firewall prevents unauthorized network traffic from reaching the server. For example, if port 80 is not needed for any legitimate purpose, it can be blocked on the firewall to deny any connection attempts on that port.


NEW QUESTION # 40
A systems administrator is investigating a server with a RAID array that will not boot into the OS. The administrator notices all the hard drives are reporting to be offline. The administrator checks the RAID controller and verifies the configuration is correct. The administrator then replaces one of the drives with a known-good drive, but it appears to be unavailable as well. Next, the administrator takes a drive out of the server and places it in a spare server, and the drive is available and functional. Which of the following is MOST likely causing the issue?

  • A. The drives need to be reseated.
  • B. Resources are misallocated.
  • C. The kernel is corrupt.
  • D. The backplane has failed.

Answer: D

Explanation:
Explanation
The backplane is a circuit board that connects multiple hard drives to a RAID controller and provides power and data transfer between them. If the backplane has failed, it may cause all the hard drives to be offline and prevent the server from booting into the OS. The fact that replacing one of the drives with a known-good drive did not work, and that taking a drive out of the server and placing it in a spare server made it functional, suggests that the problem is not with the drives themselves but with the backplane. A corrupt kernel (A) would not affect the status of the hard drives, as it is a software component of the OS. Resource misallocation (B) would not cause all the hard drives to be offline, as it is a configuration issue that affects how resources are assigned to processes or applications. Reseating the drives (D) would not help, as it would not fix a faulty backplane. References:
https://www.dell.com/support/kbdoc/en-us/000130114/how-to-troubleshoot-a-faulty-backplane


NEW QUESTION # 41
An administrator receives an alert stating a S.MAR.T. error has been detected. Which of the following should the administrator run FIRST to determine the issue?

  • A. A firmware update
  • B. A hard drive test
  • C. A power supply swap
  • D. A RAM test

Answer: B

Explanation:
A S.M.A.R.T. error is an indication of a potential failure of a hard drive. S.M.A.R.T. stands for Self-Monitoring, Analysis and Reporting Technology and it is a feature that monitors the health and performance of hard drives. A hard drive test can help diagnose the issue and determine if the drive needs to be replaced. References:
https://www.comptia.org/training/resources/exam-objectives/comptia-server-sk0-005-exam-objectives (Objective 1.1)


NEW QUESTION # 42
An administrator needs to reconfigure a teamed network connection on a server in a remote data center. Which of the following will offer the most resilient connection while performing this change?

  • A. Use of an RDP console
  • B. Use of a VNC console
  • C. Use of a crash cart
  • D. Use of an 00B solution

Answer: D

Explanation:
Explanation
An out-of-band (OOB) solution is a method of accessing and managing a server remotely without using the network connection or the operating system of the server. An OOB solution can use a dedicated management port, a serial console, or a KVM switch to provide a resilient connection while performing changes to the network configuration of the server. An OOB solution is more reliable than a VNC or RDP console, which depend on the network and the operating system, and more convenient than a crash cart, which requires physical access to the server.
References: CompTIA Server+ SK0-005 Certification Study Guide, Chapter 2, Lesson 2.3, Objective 2.3


NEW QUESTION # 43
A server administrator must respond to tickets within a certain amount of time. The server administrator needs to adhere to the:

  • A. BIA.
  • B. RTO.
  • C. MTTR.
  • D. SLA.

Answer: D


NEW QUESTION # 44
A technician is configuring a point-to-point heartbeat connection between two servers using IP addressing.
Which of the following is the most efficient
subnet mask for this connection?

  • A. /32
  • B. /29
  • C. /28
  • D. /30

Answer: D

Explanation:
Explanation
The most efficient subnet mask for a point-to-point heartbeat connection between two servers using IP addressing is /30. A /30 subnet mask has 255.255.255.252 as its decimal representation and
11111111.11111111.11111111.11111100 as its binary representation. This means that there are only two bits available for the host portion of the IP address, which allows for four possible combinations: 00, 01, 10, and
11. However, the first and the last combinations are reserved for the network address and the broadcast address, respectively. Therefore, only two IP addresses are usable for the point-to-point connection, which is the minimum required for such a link. A /30 subnet mask is also known as a point-to-point prefix because it is commonly used for point-to-point links between routers or servers1.
A /28 subnet mask has 255.255.255.240 as its decimal representation and
11111111.11111111.11111111.11110000 as its binary representation. This means that there are four bits available for the host portion of the IP address, which allows for 16 possible combinations. However, two of them are reserved for the network address and the broadcast address, respectively. Therefore, 14 IP addresses are usable for the subnet, which is more than needed for a point-to-point connection and would result in wasted addresses.
A /29 subnet mask has 255.255.255.248 as its decimal representation and
11111111.11111111.11111111.11111000 as its binary representation. This means that there are three bits available for the host portion of the IP address, which allows for eight possible combinations. However, two of them are reserved for the network address and the broadcast address, respectively. Therefore, six IP addresses are usable for the subnet, which is still more than needed for a point-to-point connection and would result in wasted addresses.
A /32 subnet mask has 255.255.255.255 as its decimal representation and
11111111.11111111.11111111.11111111 as its binary representation. This means that there are no bits available for the host portion of the IP address, which allows for only one possible combination: all ones.
Therefore, only one IP address is usable for the subnet, which is not enough for a point-to-point connection and would result in an invalid configuration.
Therefore, a /30 subnet mask is the most efficient choice for a point-to-point heartbeat connection between two servers using IP addressing because it provides exactly two usable IP addresses without wasting any addresses or creating any conflicts1.


NEW QUESTION # 45
An administrator is configuring a host-based firewall tor a server. The server needs to allow SSH, FTP, and LDAP traffic. Which of the following ports must be configured so this traffic will be allowed? (Select THREE).

  • A. 0
  • B. 1
  • C. 2
  • D. 3
  • E. 4
  • F. 5
  • G. 6
  • H. 7

Answer: B,C,H

Explanation:
Explanation
These are the port numbers that must be configured on a host-based firewall for a server that needs to allow SSH, FTP, and LDAP traffic. A port number is a numerical identifier that specifies a communication endpoint for a network protocol or an application. A host-based firewall is a software tool that monitors and controls incoming and outgoing network traffic on a single host based on predefined rules. SSH (Secure Shell) is a protocol that allows secure remote access and file transfer over an encrypted connection. The default port number for SSH is 22. FTP (File Transfer Protocol) is a protocol that allows transferring files between hosts over a network connection. The default port number for FTP is 21. LDAP (Lightweight Directory Access Protocol) is a protocol that allows accessing and managing directory services over a network connection. The default port number for LDAP is 389. References:
https://www.howtogeek.com/190014/virtualization-basics-understanding-techniques-and-fundamentals/
https://www.howtogeek.com/220152/what-is-the-difference-between-127.0.0.1-and-0.0.0.0/
https://www.howtogeek.com/428483/what-is-end-to-end-encryption-and-why-does-it-matter/


NEW QUESTION # 46
A technician is trying to determine the reason why a Linux server is not communicating on a network. The returned network configuration is as follows:
eth0: flags=4163<UP, BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 127.0.0.1 network 255.255.0.0 broadcast 127.0.0.1
Which of the following BEST describes what is happening?

  • A. The server is configured to use DHCP on a network that has multiple scope options
  • B. The server is configured to use DHCP, but the DHCP server is sending an incorrect subnet mask
  • C. The server is configured to use DHCP on a network that does not have a DHCP server
  • D. The server is configured to use DHCP, but the DHCP server is sending an incorrect MTU setting

Answer: B


NEW QUESTION # 47
A technician is connecting a Linux server to a share on a NAS. Which of the following is the MOST appropriate native protocol to use for this task?

  • A. NFS
  • B. FTP
  • C. SFTP
  • D. CIFS

Answer: A

Explanation:
The most appropriate native protocol to use for connecting a Linux server to a share on a NAS is NFS. NFS (Network File System) is a protocol that allows file sharing and remote access over a network. NFS is designed for Unix-like operating systems, such as Linux, and supports features such as symbolic links, hard links, file locking, and file permissions. NFS uses mount points to attach remote file systems to local file systems, making them appear as if they are part of the local file system. NFS can provide fast and reliable access to files stored on a NAS (Network Attached Storage), which is a device that provides centralized storage for network devices.


NEW QUESTION # 48
Which of the following distributes a load across all interfaces?

  • A. Failover
  • B. Active-passive configuration
  • C. Link aggregation group
  • D. Most recently used algorithm

Answer: C

Explanation:
* Link Aggregation: Involves combining multiple physical network interfaces into a single logical interface. This creates increased bandwidth, improved fault tolerance, and load balancing, where traffic can be distributed across all links in the group. (CompTIA Server+ Objectives SK0-004: 2.4)
* Why other options are incorrect:
* Most recently used algorithm: A concept used in memory management, not network traffic distribution.
* Active-passive configuration: Used for failover with only one interface active at a time.
* Failover: Ensures service continuity if an interface fails but does not inherently distribute load across multiple links.


NEW QUESTION # 49
A technician is connecting a server's secondary NIC to a separate network. The technician connects the cable to the switch but then does not see any link lights on the NIC. The technician confirms there is nothing wrong on the network or with the physical connection. Which of the following should the technician perform NEXT?

  • A. Restart the server
  • B. Check the DHCP configuration
  • C. Enable the port on the server
  • D. Configure the network on the server

Answer: C

Explanation:
The next thing that the technician should perform is to enable the port on the server. A port is a logical endpoint that identifies a specific service or application on a network device. A port can be enabled or disabled depending on whether the service or application is running or not. If a port is disabled on a server, it means that the server cannot send or receive any network traffic on that port, which can prevent communication with other devices or services that use that port. In this case, if port 389 is disabled on the server, it means that the server cannot use LDAP to access or modify directory services over a network. To resolve this issue, the technician should enable port 389 on the server using commands such as netsh or iptables.


NEW QUESTION # 50
A company uses a hot-site, disaster-recovery model. Which of the following types of data replication is required?

  • A. Incremental
  • B. Constant
  • C. Asynchronous
  • D. Application consistent

Answer: A


NEW QUESTION # 51
A technician is unable to access a server's package repository internally or externally. Which of the following are the MOST likely reasons? (Choose two.)

  • A. The default gateway is incorrect
  • B. The external firewall is blocking access
  • C. The system time is not synchronized
  • D. The server has an architecture mismatch
  • E. The local system log file is full
  • F. The technician does not have sufficient privileges

Answer: A,B

Explanation:
The most likely reasons why the technician is unable to access a server's package repository internally or externally are that the external firewall is blocking access and that the default gateway is incorrect.
A package repository is a source of software packages that can be installed or updated on a server using a package manager tool. A package repository can be accessed over a network using a URL or an IP address.
However, if there are any network issues or misconfigurations, the access to the package repository can be blocked or failed.
An external firewall is a device or software that controls the incoming and outgoing network traffic based on predefined rules or policies.
An external firewall can block access to a package repository if it does not allow traffic on certain ports or protocols that are used by the package manager tool.
A default gateway is a device or address that routes network traffic from one network to another network.
A default gateway can be incorrect if it does not match the actual device or address that connects the server's network to other networks, such as the internet.
An incorrect default gateway can prevent the server from reaching the package repository over other networks.


NEW QUESTION # 52
A server administrator has connected a new server to the network. During testing, the administrator discovers the server is not reachable via server but can be accessed by IP address. Which of the following steps should the server administrator take NEXT? (Select TWO).

  • A. Check the default gateway.
  • B. Run the ping command.
  • C. Check the DNS server.
  • D. Check the route tables.
  • E. Check the hosts file.
  • F. Run the tracert command

Answer: C,E

Explanation:
If the server is not reachable by name but can be accessed by IP address, it means that there is a problem with name resolution. The hosts file and the DNS server are both responsible for mapping hostnames to IP addresses. Therefore, the server administrator should check these two files for any errors or inconsistencies that might prevent the server from being resolved by name. References:
https://www.howtogeek.com/662249/how-to-edit-the-hosts-file-on-linux/
https://www.howtogeek.com/164981/how-to-use-nslookup-to-check-domain-name-information-in-microsoft-win


NEW QUESTION # 53
A technician is attempting to update a server's firmware. After inserting the media for the firmware and restarting the server, the machine starts normally into the OS. Which of the following should the technician do NEXT to install the firmware?

  • A. Enable HIDS on the server
  • B. Press F8 to enter safe mode
  • C. Boot from the media
  • D. Log in with an administrative account

Answer: C

Explanation:
Explanation
The technician should boot from the media to install the firmware on the server. Firmware is a type of software that controls the low-level functions of hardware devices, such as BIOS (Basic Input/Output System), RAID controllers, network cards, etc. Firmware updates are often provided by hardware manufacturers to fix bugs, improve performance, or add new features to their devices. To install firmware updates on a server, the technician needs to boot from a media device (such as a CD-ROM, DVD-ROM, USB flash drive, etc.) that contains the firmware files and installation program. The technician cannot install firmware updates from within the operating system because firmware updates often require restarting or resetting the hardware devices.


NEW QUESTION # 54
......

Validate your Skills with Updated SK0-005 Exam Questions & Answers and Test Engine: https://www.actualtests4sure.com/SK0-005-test-questions.html

Tested & Approved SK0-005 Study Materials Download: https://drive.google.com/open?id=1L_vKAIw6kBIKpSuAh3QBO6yhev3LynuM