Information Technology Reference
In-Depth Information
Exam Prep Practice Questions
Question 1
What is the name of the syslogd configuration file?
The correct answer is
/etc/syslog.conf
.
Question 2
The
/etc/syslog.conf
file was modified to capture messages from a particular
user application, but the log file still does not contain any of those messages.
Which of the following reasons could explain this? [Select all that apply.]
❑
A.
A typographical error exists in the
/etc/syslog.conf
entry.
❑
B.
The
syslogd
program was not restarted.
❑
C.
The user application does not generate the facility and/or severity of
expected messages.
❑
D.
The
syslogd
program is not running.
❑
E.
The wrong log is being examined.
Answers A, B, C, D, and E are all correct. All of these are reasons that the sys-
log facility might not work as expected. Entries with typographical errors are
either ignored or cause other entries to be misinterpreted. The
syslogd
com-
mand reads the
/etc/syslog.conf
file only when it is started or it receives the
SIGHUP
signal. The
/etc/syslog.conf
entry must match the expected facili-
ty/severity being used by the user application to submit the messages. If the
syslogd
command is not running, it cannot receive and handle messages. Be
certain that the messages are being sent to the intended log file.
Question 3
Which of the following keywords are relevant conditions for an
m4
macro in the
/etc/syslog.conf
file? [Select all that apply.]
❑
A.
ALERT
❑
B.
LOGHOST
❑
C.
HOSTNAME
❑
D.
SYSLOG
