CSS QUIZ - 5 (Solution with the answer).
Q:1. Chroot jail is used to ___ process and its children by ____ to the supplied directory name.
a.isolate, changing the root directory
b.change, the name
c.execute, renaming it
d.All of the above
Ans:-(b) A chroot on Unix operating systems is an operation that changes the apparent root directory for the current running process and its children. The programs that run in this modified environment cannot access the files outside the designated directory tree. This essentially limits their access to a directory tree and thus they get the name “chroot jail”.
Q:2. Taliking about FreeBSD jail, which of the following is true ?
a.It can only bind to sockets with specified IP address and authorized ports
b.It can communicate with processes inside and outside of jail
c.Root is limited (example: cannot load kernel modules)
d.None of the above
Ans:-(a) The FreeBSD jail mechanism restricts the activities of a process in a jail with respect to the rest of the system. In effect, jailed processes are sandboxed. They are bound to specific IP addresses, and a jailed process cannot access divert or routing sockets.
Q:3. Which of the following is incorrect for System call interposition?
a.It tracks all the system service requests of processes.
b.Each system request can be modified or denied.
c.It is impossible to implement tools to trace, monitor, or virtualize processes.
d.None of the above.
Ans:-(d) All the above three options follows the System call interposition except the 4th option , so the 4th option is wrong.
Q:4. Which of the following is a computer security utility which limits an application's access to the system by enforcing access policies for system calls?
a.systrace
b.NetBSD
c.ptrace
d.None of the above
Ans:-(a) Systrace is a computer security utility which limits an application's access to the system by enforcing access policies for system calls. This can mitigate the effects of buffer overflows and other security vulnerabilities.
Q:5. Which of the following uses a call back mechanism in the kernel module to redirect system calls?
a.systrace
b.ptrace
c.ostia
d.NetBSD
Ans:-(b) The system call trapping mechanism chosen for this thesis is the "Linux ptrace system" because it allows to implement the system call redirection framework. ptrace allows to request breakpoints for system calls.
Hope you guys have liked this again and hey stay connected in this blog for more Information, See you soon.
Till then Jai Hind and Vande Mataram 😇.
Thanks for the solutions 🤗
ReplyDeleteYour welcome ☺️
DeleteThankyou for this brother...
ReplyDelete