EXAM MUST BE TYPED

You can use any resource you want EXCEPT other people, animals, aliens etc. However, you MUST document that source (if it is the course book just put (CB) after it ;) So if it is a web page, give me the URL someplace, etc.

Some of this may be in the book, some of it you may have to search for a bit, but if you want to become a sys admin you had best learn how to search the web, such as using Google for a list of search engines/indexes at the bottom.

Additionally, when I ask for "How would I make it so I can view a huge directory with ls without it scrolling off the screen" a simple
ls -l | more
is all I need for an answer. Keep these short. Even some of the first questions should be a couple of sentences at most. I know this test will be some work (I figure it will take you about 3-4 hours to finish, not counting boot up times etc) but I don't want it becoming a nightmare. Good hunting.

1. Name 4 crucial things that you can do to make your machine more secure in relation to the server software on it. Note: Many of these things are very basic, and do not require any real "security software" knowledge.
2. Name three "server side" languages you can allow your users to access with an apache web server. What are the advantages of these "server side" languages?
3. You want to configure users directories so they use www for their home web directory in apache, BUT, you have decided to use subdirectories inside of /home, so you have /home/stu/usernames or /home/inst/usernames, how would you set this up in the apache httpd.conf file? Show me the configuration just for the users. (You'll have to think about this one, copy and paste the appropriate section from httpd.conf and make the changes).
4. Your users claim that they can't get their web pages to show up. Name three things THEY could have done wrong.
5. How do you restart apache? (be specific, ie what directory and so on). What would you need to do to make sure apache starts every time the machine reboots (also be specific).
6. Search the web, name three other web servers that will run on a Linux platform. (Give the URL's as references).
7. What is a virtual host? What advantage does it give you? If you are running virtual hosts, what "document root" shows up if they just type your server's IP address? Are there any disadvantages? How does it affect user directories, if at all?
8. What is "Document Root"? How is it different than "THE" root directory (ie / )?
9. Can you have more than one "Document root" if so how?
10. The vsftpd server on Redhat/CentOS uses what is known as a "chroot" jail, what do they mean by it? And to make one of your own, yet let folks use common utilities, what do you have to do for the chroot jail?
11. List 4 configuration changes you can make to the sshd to make it more secure, and give the location and name of the file where you make the changes
12. You have a web server with the IP address of 123.123.123.45 and a main domain name of pimentoloaf.com, how would you set up a virtual host by the name of "bannaslug.com" with it's own document root, and allow server side includes but no execution for it. (Put the actual settings from the config file right here)
13. You want to search for all the lines in /var/log/httpd/access_log that pull up the file "order.html", BUT NOT include lines from the host wasteoftime.org. Show the command(s) you would use in ONE line.
14. How would you make sure a particular server is running? Give three different ways to check.
15. In general, describe what goes on to make a "secure web server" secure, mention certificates and the 2 key encryption system. How does someone "Sign" something to verify that it is from them? Both the book and the web may be a good resource for this question.
16. A user has left your machine, and wants you to forward the web pages in their directory /home/shaggy/www/ to their new server, www.shaggy.com, show me the line you would put into httpd.conf to do this.
17. If you would like to accept credit cards for businesses, but do NOT want to have a secure web server set up, how would you do it? Give at least two web sites that offer such services (and no, I don't mean hosting services, this needs to be available, at least indirectly, off of YOUR web server).
18. Here's the big question of the day. It has several parts. All of them involve controlling access to particular directories controls within the httpd.conf file. Note, we are NOT talking about /etc/passwd or /etc/group, and any answers involving those two files will be given zero points. This is all done WITHIN apache. (ie programs and files that literally are part of the apache web server distribution)
    • How do you limit access via <Directory....> using password access?
    • What is the difference between "Basic" and "Digest" authentication, and how would you set it up?
    • What utility would you use (and how would you use it) to create apache passwords for sally and billy?