Which of the following explains why an intended operator cannot perform the intended action?

A security analyst is troubleshooting a scenario in which an operator should only be allowed to reboot remote hosts but not perform other activities. The analyst inspects the following portions of different configuration files:
Configuration file 1:
Operator ALL=/sbin/reboot
Configuration file 2:
Command="/sbin/shutdown now", no-x11-forwarding, no-pty, ssh-dss
Configuration file 3:
Operator:x:1000:1000::/home/operator:/bin/bash
Which of the following explains why an intended operator cannot perform the intended action?
A. The sudoers file is locked down to an incorrect command
B. SSH command shell restrictions are misconfigured
C. The passwd file is misconfigured
D. The SSH command is not allowing a pty session

How to PASS CAS-004 in First Attempt?

FULL Printable PDF and Software. VALID exam to help you PASS.

comptia-exams

3 thoughts on “Which of the following explains why an intended operator cannot perform the intended action?

  1. The answer is B.

    Configuration file 2 should read:
    Command=”/usr/bin/sudo /sbin/reboot”,no-x11-forwarding,no-pty ssh-dss ****

    you would then do:
    ssh Operator@host ‘echo PASSWORD | /usr/bin/sudo -S /sbin/reboot’

    You don’t need a pty session to run the remote command, although sudoers should really say Operator ALL=NOPASSWD: /sbin/reboot to allow this remotely without password prompt. Might be one or two syntax error with the ssh / configuration file 2, but generally that is how you would do it. Like I don’t know if the config file 2 needs the -S after the sudo, but that is the gist of it.

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.