CompTIA Updated XK0-005 Exam Questions and Answers by farah

cp -R /opt/tools ~ copies recursively from /opt/tools to the home directory (/home/admin).

Option A creates a directory, but doesn’t copy files.

Option C is incomplete and misused.

Option D uses scp, which is unnecessary for local copy.

The custom.conf file grants sudo privileges to user1 and webadmin for managing the Apache web service, but it uses different commands for each of them. User1 is allowed to use systemctl to start and stop the httpd service, while webadmin is allowed to use init.d, service, or apache2ctl to restart the httpd service. However, the user1 is unable to restart the service, only start and stop it. To fix this, user1 should be able to use the same commands as webadmin, which can be achieved by listing webadmin as a group in the custom.conf file, using the syntax %groupname. This way, user1 will inherit the sudo privileges of the webadmin group, and be able to restart the Apache web service without compromising the least privilege security model.

References

Sudo and Sudoers Configuration | Servers for Hackers, section “Groups”

Chapter 12. Managing sudo access - Red Hat Customer Portal, section “12.1. Configuring sudo access for users and groups”

systemctl stop systemd-journald systemctl start systemd-journald is the best approach among the given options. Stopping and starting the systemd-journald service can help in managing the disk space used by journal logs without manually deleting log files or using more aggressive cleanup methods. This method ensures that log management is handled gracefully by the system's own services.

The /etc/shells file contains a list of valid login shells. Since /bin/false is not listed as a valid shell, adding it to the /etc/shells file will resolve the issue and allow the user to run the FTP service without being able to log into the system interactively.