2024年最新の実際に出るXK0-005問題集テストエンジン試験問題はここにある
更新された公式資料はXK0-005認証済みのXK0-005問題集PDF
CompTIA Linux+認定は、Linuxベースのシステムで作業するITプロフェッショナルにとって貴重な資格です。これにより、Linuxシステムの管理に熟練したことが証明されます。例えば、ソフトウェアのインストールと設定、ユーザーとグループの管理、ファイルシステムとストレージの管理、Linuxシステムのセキュリティの確保などが挙げられます。この資格は、Dell、HP、IBM、Lenovoなどの主要なIT企業によっても認められています。XK0-005認定試験は、Linux管理における候補者の基本的なレベルから上級レベルまでの知識とスキルをテストするために設計されています。Linuxに新しく取り組むITプロフェッショナルや、Linuxにいくらかの経験があるが、そのスキルを検証したい人にも適しています。
認定試験は、候補者の実践的な知識とスキルを評価する多肢選択式の質問とパフォーマンスベースのシミュレーションで構成されています。この試験は英語と日本の言語で入手でき、ピアソンビューテストセンターでオンラインまたは対面で撮影できます。認定試験の期間は90分で、合格スコアは100〜900のスケールで720です。
CompTIA XK0-005、または CompTIA Linux+ 認定試験は、Linux システム管理者になるために必要なスキルと知識を検証する、世界的に認知された資格です。この試験は、候補者が Linux システムをインストール、構成、管理、トラブルシューティングする能力をテストするように設計されています。この認定はベンダー中立であり、特定の Linux ディストリビューションに結びついていないため、世界中のさまざまな組織や企業に認知されています。
質問 # 28
A cloud engineer needs to launch a container named web-01 in background mode. Which of the following commands will accomplish this task''
- A. docker ps -a --name web-01 httpd
- B. docker run -d --name web-01 httpd
- C. docker load --name web-01 httpd
- D. docker builder -f -name web-01 httpd
正解:B
解説:
Explanation
The docker run -d --name web-01 httpd command will launch a container named web-01 in background mode.
This command will create and start a new container from the httpd image, assign it the name web-01, and run it in detached mode (-d), which means the container will run in the background without attaching to the current terminal. The docker builder -f --name web-01 httpd command is invalid, as builder is not a valid docker command, and -f and --name are not valid options for docker build. The docker load --name web-01 httpd command is invalid, as load does not accept a --name option, and httpd is not a valid file name for load. The docker ps -a --name web-01 httpd command is invalid, as ps does not accept a --name option, and httpd is not a valid filter for ps. References: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 16:
Virtualization and Cloud Technologies, page 499.
質問 # 29
A Linux administrator needs to obtain a list of all volumes that are part of a volume group. Which of the following commands should the administrator use to accomplish this task?
- A. fdisk -1
- B. vgs
- C. lvs
- D. pvs
正解:D
質問 # 30
In order to copy data from another VLAN, a systems administrator wants to temporarily assign IP address
10.0.6 5/24 to the newly added network interface enp1s0f1. Which of the following commands should the administrator run to achieve the goal?
- A. ip addr add 10.0.6.5/24 dev enpls0f1
- B. ifconfig 10.0.6.5/24 enpsIs0f1
- C. echo "IPV4_ADDRESS=10.0.6.5/24" > /etc/sysconfig/network-scripts/ifcfg-enplsOfl
- D. nmcli conn add lpv4.address-10.0.6.5/24 ifname enpls0f1
正解:A
解説:
Explanation
The command ip addr add 10.0.6.5/24 dev enp1s0f1 will achieve the goal of temporarily assigning IP address
10.0.6.5/24 to the newly added network interface enp1s0f1. The ip command is a tool for managing network interfaces and routing on Linux systems. The addr option specifies the address manipulation mode.
The add option adds a new address to an interface. The 10.0.6.5/24 is the IP address and the subnet mask in CIDR notation. The dev option specifies the device name. The enp1s0f1 is the name of the network interface.
The command ip addr add 10.0.6.5/24 dev enp1s0f1 will add the IP address 10.0.6.5/24 to the network interface enp1s0f1, which will allow the administrator to copy data from another VLAN. This is the correct command to use to achieve the goal. The other options are incorrect because they either do not add a new address to an interface (echo "IPV4_ADDRESS=10.0.6.5/24" >
/etc/sysconfig/network-scripts/ifcfg-enp1s0f1 or ifconfig 10.0.6.5/24 enp1s0f1) or do not use the correct syntax for the command (nmcli conn add ipv4.address-10.0.6.5/24 ifname enp1s0f1 instead of nmcli conn add type ethernet ipv4.address 10.0.6.5/24 ifname enp1s0f1). References: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 12: Managing Network Connections, page 385.
質問 # 31
A cloud engineer is asked to copy the file deployment.yaml from a container to the host where the container is running. Which of the following commands can accomplish this task?
- A. docker cp container_id/deployment.yaml deployment.yaml
- B. docker cp container_id:/deployment.yaml deployment.yaml
- C. docker cp container_id/deployment.yaml local://deployment.yaml
- D. docker cp deployment.yaml local://deployment.yaml
正解:B
解説:
Explanation
The command docker cp container_id:/deployment.yaml deployment.yaml can accomplish the task of copying the file deployment.yaml from a container to the host. The docker command is a tool for managing Docker containers and images. The cp option copies files or directories between a container and the local filesystem.
The container_id is the identifier of the container, which can be obtained by using the docker ps command.
The /deployment.yaml is the path of the file in the container, which must be preceded by a slash.
The deployment.yaml is the path of the file on the host, which can be relative or absolute. The command docker cp container_id:/deployment.yaml deployment.yaml will copy the file deployment.yaml from the container to the current working directory on the host. This is the correct command to use to accomplish the task. The other options are incorrect because they either use the wrong syntax (docker cp container_id/deployment.yaml deployment.yaml or docker cp container_id/deployment.yaml local://deployment.yaml) or do not exist (docker cp deployment.yaml local://deployment.yaml). References: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 19:
Managing Cloud and Virtualization Technologies, page 567.
質問 # 32
A Linux administrator would like to use systemd to schedule a job to run every two hours. The administrator creates timer and service definitions and restarts the server to load these new configurations. After the restart, the administrator checks the log file and notices that the job is only running daily. Which of the following is MOST likely causing the issue?
- A. The system-daemon services need to be reloaded.
- B. The OnCalendar schedule is incorrect in the timer definition.
- C. The checkdiskspace.service is not running.
- D. The checkdiskspace.service needs to be enabled.
正解:B
解説:
Explanation
The OnCalendar schedule is incorrect in the timer definition, which is causing the issue. The OnCalendar schedule defines when the timer should trigger the service. The format of the schedule is OnCalendar=<year>-<month>-<day> <hour>:<minute>:<second>. If any of the fields are omitted, they are assumed to be *, which means any value. Therefore, the schedule OnCalendar=*-*-* 00:00:00 means every day at midnight, which is why the job is running daily. To make the job run every two hours, the schedule should be OnCalendar=*-*-* *:00:00/2, which means every hour divisible by 2 at the start of the minute. The other options are incorrect because they are not related to the schedule. The checkdiskspace.service is running, as shown by the output of systemctl status checkdiskspace.service. The checkdiskspace.service is enabled, as shown by the output of systemctl is-enabled checkdiskspace.service. The system-daemon services do not need to be reloaded, as the timer and service definitions are already loaded by the restart. References: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 14: Managing Processes and Scheduling Tasks, page
437.
質問 # 33
A Linux systems administrator receives reports from various users that an application hosted on a server has stopped responding at similar times for several days in a row. The administrator logs in to the system and obtains the following output:
Output 1:
Output 2:
Output 3:
Which of the following should the administrator do to provide the BEST solution for the reported issue?
- A. Configure more CPU cores to allow for the server to allocate more processing and prevent the Java process from consuming all of the available resources.
- B. Configure a different nice value for the Java process to allow for more users and prevent the Java process from restarting during business hours.
- C. Configure memory allocation policies during business hours and prevent the Java process from going into a zombie state while the server is idle.
- D. Configure the swap space to allow for spikes in usage during peak hours and prevent the Java process from stopping due to a lack of memory.
正解:D
解説:
Explanation
Based on the output of the image sent by the user, the system requires more swap space to allow for spikes in usage during peak hours and prevent the Java process from stopping due to a lack of memory. The output shows that there is only 0 MB of swap space available on the system, which means that there is no room for swapping out memory pages when physicalmemory is full or low. The output also shows that there is only 793 MB of available memory on the system, which may not be enough to handle high-demand applications such as Java. This may cause Java to stop working due to insufficient memory or trigger an OutOfMemoryError exception. Configuring more swap space on the system would help to alleviate this issue by providing more virtual memory for applications and improving performance. Configuring memory allocation policies during business hours will not help to solve this issue, as it will not increase the amount of available memory or swap space on the system. Configuring a different nice value for Java process will not help to solve this issue, as it will only affect its scheduling priority, not its memory consumption or allocation. Configuring more CPU cores will not help to solve this issue, as it will only increase processing power, not memory capacity or availability. References: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 15: Managing Memory and Process Execution, page 468.
質問 # 34
Using AD Query, the security gateway connections to the Active Directory Domain Controllers using what protocol?
- A. Windows Management Instrumentation (WMI)
- B. Lightweight Directory Access Protocol (LDAP)
- C. Remote Desktop Protocol (RDP)
- D. Hypertext Transfer Protocol Secure (HTTPS)
正解:B
解説:
Using AD Query, the security gateway connects to the Active Directory Domain Controllers using Lightweight Directory Access Protocol (LDAP). LDAP is a protocol that provides access to directory services over a network. AD Query uses LDAP queries to retrieve information about users and groups from Active Directory Domain Controllers without installing any software on them. AD Query does not use Windows Management Instrumentation (WMI), Hypertext Transfer Protocol Secure (HTTPS), or Remote Desktop Protocol (RDP) to connect to Active Directory Domain Controllers. Reference: Check Point Certified Security Administrator (CCSA) R80.x Study Guide, Chapter 5: User Management and Authentication, page 69.
質問 # 35
An application developer received a file with the following content:
##This is a sample Image ##
FROM ubuntu:18.04
MAINTAINER [email protected]
COPY . /app
RUN make /app
CMD python /app/app.py
RUN apt-get update
RUN apt-get install -y nginx
CMD ["echo","Image created"]
The developer must use this information to create a test bed environment and identify the image (myimage) as the first version for testing a new application before moving it to production. Which of the following commands will accomplish this task?
- A. docker build -t myimage:1.0 .
- B. docker build -t myimage: .
- C. docker build -t myimage-1.0 .
- D. docker build -i myimage:1.0 .
正解:A
解説:
The docker build command is used to build an image from a Dockerfile and a context1. The Dockerfile is a text file that contains the instructions for creating the image, and the context is a set of files that can be used in the image creation process1. The file that the developer received is an example of a Dockerfile.
The -t option is used to specify a name and an optional tag for the image1. The name and tag are separated by a colon (:), and the tag is usually used to indicate the version of the image2. For example, -t myimage:1.0 means that the image will be named myimage and tagged as 1.0.
The last argument of the docker build command is the path to the context, which can be a local directory or a URL1. The dot (.) means that the current working directory is the context2. Therefore, docker build -t myimage:1.0 . means that the image will be built from the Dockerfile and the files in the current working directory, and it will be named myimage and tagged as 1.0.
質問 # 36
A junior administrator is setting up a new Linux server that is intended to be used as a router at a remote site.
Which of the following parameters will accomplish this goal?
- A.

- B.

- C.

- D.

正解:B
解説:
Explanation
The parameter net.ipv4.ip_forward=1 will accomplish the goal of setting up a new Linux server as a router.
This parameter enables the IP forwarding feature, which allows the server to forward packets between different network interfaces. This is necessary for a router to route traffic between different networks. The parameter can be set in the /etc/sysctl.conf file or by using the sysctl command. This is the correct parameter to use to accomplish the goal. The other options are incorrect because they either do not exist (net.ipv4.ip_forwarding or net.ipv4.ip_route) or do not enable IP forwarding (net.ipv4.ip_forward=0). References: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 12:
Managing Network Connections, page 382.
質問 # 37
An administrator installed an application from source into /opt/operations1/ and has received numerous reports that users are not able to access the application without having to use the full path /opt/operations1/bin/*. Which of the following commands should be used to resolve this issue?
- A. echo 'export PATH=$PATH/opt/operations1/bin' >> /etc/profile
- B. echo 'export PATH=/opt/operations1/bin' >> /etc/profile
- C. echo 'export PATH=$PATH:/opt/operations1/bin' >> /etc/profile
- D. echo 'export $PATH:/opt/operations1/bin' >> /etc/profile
正解:C
質問 # 38
A Linux administrator has been tasked with installing the most recent versions of packages on a RPM-based OS. Which of the following commands will accomplish this task?
- A. apt-get upgrade
- B. yum updateinfo
- C. dnf update
- D. rpm -a
- E. yum check-update
正解:C
解説:
The dnf update command will accomplish the task of installing the most recent versions of packages on a RPM-based OS. This command will check for available updates from the enabled repositories and apply them to the system. The apt-get upgrade command is used to install updates on a Debian-based OS, not a RPM-based OS. The rpm -a command is invalid, as -a is not a valid option for rpm. The yum updateinfo command will display information about available updates, but it will not install them. The yum check-update command will check for available updates, but it will not install them. Reference: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 19: Managing Packages and Software, page 559.
質問 # 39
At what point is the Internal Certificate Authority (ICA) created?
- A. Upon creation of a certificate.
- B. When an administrator decides to create one.
- C. When an administrator initially logs into SmartConsole.
- D. During the primary Security Management Server installation process.
正解:D
解説:
The Internal Certificate Authority (ICA) is created during the primary Security Management Server installation process. The ICA is a component of Check Point's Public Key Infrastructure (PKI) that issues and manages certificates for Security Gateways and administrators. The ICA is automatically installed and initialized when the primary Security Management Server is installed. The ICA is not created upon creation of a certificate, when an administrator decides to create one, or when an administrator initially logs into SmartConsole. Reference: Check Point Certified Security Administrator (CCSA) R80.x Study Guide, Chapter 3: Check Point Security Management Architecture, page 32.
質問 # 40
A systems administrator is trying to track down a rogue process that has a TCP listener on a network interface for remote command-and-control instructions.
Which of the following commands should the systems administrator use to generate a list of rogue process names? (Select two).
- A. nmap -sS 0.0.0.0/0
- B. netstat -a | grep TCP
- C. netstat -antp | grep LISTEN
- D. nmap -p1-65535 | grep -i tcp
- E. lsof -iTCP | grep LISTEN
- F. lsof -i:22 | grep TCP
正解:C、E
解説:
The best commands to use to generate a list of rogue process names that have a TCP listener on a network interface are A. netstat -antp | grep LISTEN and B. lsof -iTCP | grep LISTEN. These commands will show the process ID (PID) and name of the processes that are listening on TCP ports, which can be used to identify any suspicious or unauthorized processes. The other commands are either not specific enough, not valid, or not relevant for this task. For example:
C) lsof -i:22 | grep TCP will only show the processes that are listening on port 22, which is typically used for SSH, and not any other ports.
D) netstat -a | grep TCP will show all the TCP connections, both active and listening, but not the process names or IDs.
E) nmap -p1-65535 | grep -i tcp will scan all the TCP ports on the local host, but not show the process names or IDs.
F) nmap -sS 0.0.0.0/0 will perform a stealth scan on the entire internet, which is not only impractical, but also illegal in some countries.
質問 # 41
An administrator installed an application from source into /opt/operations1/ and has received numerous reports that users are not able to access the application without having to use the full path /opt/operations1/bin/*. Which of the following commands should be used to resolve this issue?
- A. echo 'export PATH=$PATH/opt/operations1/bin' >> /etc/profile
- B. echo 'export PATH=/opt/operations1/bin' >> /etc/profile
- C. echo 'export PATH=$PATH:/opt/operations1/bin' >> /etc/profile
- D. echo 'export $PATH:/opt/operations1/bin' >> /etc/profile
正解:C
解説:
The command echo 'export PATH=$PATH:/opt/operations1/bin' >> /etc/profile should be used to resolve the issue of users not being able to access the application without using the full path. The echo command prints the given string to the standard output. The export command sets an environment variable and makes it available to all child processes. The PATH variable contains a list of directories where the shell looks for executable files. The $PATH expands to the current value of the PATH variable. The : separates the directories in the list. The /opt/operations1/bin is the directory where the application is installed. The >> operator appends the output to the end of the file. The /etc/profile file is a configuration file that is executed when a user logs in. The command echo 'export PATH=$PATH:/opt/operations1/bin' >> /etc/profile will add the /opt/operations1/bin directory to the PATH variable for all users and allow them to access the application without using the full path. This is the correct command to use to resolve the issue. The other options are incorrect because they either overwrite the PATH variable (echo 'export PATH=/opt/operations1/bin' >> /etc/profile) or do not use the correct syntax (echo 'export PATH=$PATH/opt/operations1/bin' >> /etc/profile or echo 'export $PATH:/opt/operations1/bin' >> /etc/profile). Reference: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 9: Working with the Linux Shell, page 295.
質問 # 42
A systems engineer is adding a new 1GB XFS filesystem that should be temporarily mounted under /ops/app. Which of the following is the correct list of commands to achieve this goal?
- A.

- B.

- C.

- D.

正解:A
解説:
The list of commands in option D is the correct way to achieve the goal. The commands are as follows:
fallocate -l 1G /ops/app.img creates a 1GB file named app.img under the /ops directory.
mkfs.xfs /ops/app.img formats the file as an XFS filesystem.
mount -o loop /ops/app.img /ops/app mounts the file as a loop device under the /ops/app directory. The other options are incorrect because they either use the wrong commands (dd or truncate instead of fallocate), the wrong options (-t or -f instead of -o), or the wrong order of arguments (/ops/app.img /ops/app instead of /ops/app /ops/app.img). Reference: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 10: Managing Storage, pages 323-324.
質問 # 43
When trying to log in remotely to a server, a user receives the following message:
The server administrator is investigating the issue on the server and receives the following outputs:
Which of the following is causing the issue?
- A. The user entered the wrong password.
- B. The account was locked out due to three failed logins.
- C. The wrong permissions are on the user's home directory.
- D. The user has the wrong shell assigned to the account.
正解:D
解説:
Explanation
The user has the wrong shell assigned to the account, which is causing the issue. The output 1 shows that the user's shell is set to /bin/false, which is not a valid shell and will prevent the user from logging in. The output
2 shows that the user's home directory has the correct permissions (drwxr-xr-x), and the output 3 shows that the user entered the correct password and was accepted by the SSH daemon, but the session was closed immediately due to the invalid shell. The other options are incorrect because they are not supported by the outputs. References: CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 13: Managing Network Services, page 413.
質問 # 44
A Linux administrator modified the SSH configuration file. Which of the following commands should be used to apply the configuration changes?
- A. systemctl stop sshd
- B. systemctl mask sshd
- C. systemctl reload sshd
- D. systemctl start sshd
正解:C
質問 # 45
A non-privileged user is attempting to use commands that require elevated account permissions, but the commands are not successful. Which of the following most likely needs to be updated?
- A. /etc/passwd
- B. /etc/sudoers
- C. /etc/shadow
- D. /etc/bashrc
正解:B
解説:
The /etc/sudoers file is used to configure the sudo command, which allows non-privileged users to execute commands that require elevated account permissions1. The file contains a list of users and groups that are allowed to use sudo, and the commands they can run with it. The file also defines the security policy for sudo, such as whether a password is required, how long the sudo session lasts, and what environment variables are preserved or reset.
The /etc/passwd file is used to store information about the user accounts on the system, such as their username, user ID, home directory, and login shell. The /etc/shadow file is used to store the encrypted passwords for the user accounts, along with other information such as password expiration and aging. These files are not directly related to the sudo command, and updating them will not grant a user elevated account permissions.
The /etc/bashrc file is used to set up the environment for the bash shell, such as aliases, functions, variables, and options. This file is executed whenever a new bash shell is started, and it affects all users on the system. However, this file does not control the sudo command or its configuration, and updating it will not allow a user to use commands that require elevated account permissions.
質問 # 46
A systems administrator is compiling a report containing information about processes that are listening on the network ports of a Linux server. Which of the following commands will allow the administrator to obtain the needed information?
- A. ss -pint
- B. tcpdump -nL
- C. netstat -pn
- D. lsof -It
正解:C
質問 # 47
......
最新版無料体験を掴み取れ!CompTIA XK0-005問題集PDFは更新された:https://www.jpntest.com/shiken/XK0-005-mondaishu
最新リリースのXK0-005問題集はLinux+認証済み:https://drive.google.com/open?id=1_PgLtAK96gU4TO1EZJiS-D1LvQ1mVRE2