920 139 VoIP Multimedia Communication Server
MCS 5100 Rls 3 0 Practice Exam
**Question 1.** Which type of macOS user account is allowed to install software system‑wide and
modify system preferences?
A) Standard
B) Managed
C) Administrator
D) Guest
Answer: C
Explanation: Administrator accounts have elevated privileges to install applications for all users and
change system‑wide settings, unlike Standard or Managed accounts.
**Question 2.** In macOS 10.6, which utility encrypts a user’s home folder using FileVault 1?
A) Disk Utility
B) Security & Privacy pane
C) FileVault preference pane
D) Terminal command `diskutil`
Answer: C
Explanation: The FileVault preference pane (found in System Preferences) enables Home Folder
encryption with FileVault 1 in OS X 10.6.
**Question 3.** Which UNIX permission set grants read and execute rights to the group but no rights to
others?
A) rw‑‑ rw‑‑ rw‑‑
B) rwx r‑‑ r‑‑
C) rw‑‑ r‑‑ r‑‑
D) rw‑‑ r‑‑ r‑‑
, 920 139 VoIP Multimedia Communication Server
MCS 5100 Rls 3 0 Practice Exam
Answer: B
Explanation: “rwx r‑‑ r‑‑” gives the owner read/write/execute, the group read/execute, and others no
permissions.
**Question 4.** Which command adds an Access Control List (ACL) entry that gives user *bob* write
permission to file *report.txt*?
A) chmod +a "bob allow write" report.txt
B) chown bob report.txt
C) setfacl -m u:bob:w report.txt
D) chmod u+b report.txt
Answer: A
Explanation: In macOS, `chmod +a "user allow permissions"` adds an ACL entry; option A correctly grants
write to *bob*.
**Question 5.** When a file downloaded from the Internet is marked with the quarantine attribute,
which macOS feature checks it before opening?
A) Gatekeeper
B) FileVault
C) SIP
D) LaunchServices
Answer: A
Explanation: Gatekeeper inspects quarantined files and may block them if they are not from an
identified developer or lack a valid signature.
**Question 6.** Which macOS 10.6 security feature isolates applications to limit their access to system
resources?
, 920 139 VoIP Multimedia Communication Server
MCS 5100 Rls 3 0 Practice Exam
A) Gatekeeper
B) Sandbox
C) FileVault
D) Keychain
Answer: B
Explanation: The Sandbox restricts an app’s capabilities, preventing it from accessing files or hardware
outside its allowed scope.
**Question 7.** Which System Preferences pane enables the built‑in Application Firewall?
A) Network
B) Security & Privacy
C) Sharing
D) Energy Saver
Answer: B
Explanation: The Application Firewall is configured under the Security & Privacy pane in macOS 10.6.
**Question 8.** Which command‑line utility in macOS 10.6 provides stateful packet filtering?
A) ipfw
B) pfctl
C) iptables
D) firewalld
Answer: A
Explanation: `ipfw` is the native IPv4/IPv6 firewall utility in OS X 10.6, allowing rule‑based packet
filtering.
, 920 139 VoIP Multimedia Communication Server
MCS 5100 Rls 3 0 Practice Exam
**Question 9.** To allow incoming connections for the *ssh* service only from the subnet
192.168.1.0/24 using *ipfw*, which rule is correct?
A) ipfw add allow tcp from any to any 22 in via en0
B) ipfw add allow tcp from 192.168.1.0/24 to any 22 in via en0
C) ipfw add deny tcp from any to any 22 in via en0
D) ipfw add allow udp from 192.168.1.0/24 to any 22 in via en0
Answer: B
Explanation: Rule B permits TCP traffic on port 22 from the specified subnet, matching the requirement.
**Question 10.** Which type of X.509 certificate is stored in the System keychain for server
authentication?
A) Root CA certificate
B) User certificate
C) Server certificate
D) Code‑signing certificate
Answer: C
Explanation: Server certificates are placed in the System keychain so services can present them during
TLS handshakes.
**Question 11.** Which macOS utility is used to generate a Certificate Signing Request (CSR) for a new
server certificate?
A) Keychain Access
B) Disk Utility
C) System Information
MCS 5100 Rls 3 0 Practice Exam
**Question 1.** Which type of macOS user account is allowed to install software system‑wide and
modify system preferences?
A) Standard
B) Managed
C) Administrator
D) Guest
Answer: C
Explanation: Administrator accounts have elevated privileges to install applications for all users and
change system‑wide settings, unlike Standard or Managed accounts.
**Question 2.** In macOS 10.6, which utility encrypts a user’s home folder using FileVault 1?
A) Disk Utility
B) Security & Privacy pane
C) FileVault preference pane
D) Terminal command `diskutil`
Answer: C
Explanation: The FileVault preference pane (found in System Preferences) enables Home Folder
encryption with FileVault 1 in OS X 10.6.
**Question 3.** Which UNIX permission set grants read and execute rights to the group but no rights to
others?
A) rw‑‑ rw‑‑ rw‑‑
B) rwx r‑‑ r‑‑
C) rw‑‑ r‑‑ r‑‑
D) rw‑‑ r‑‑ r‑‑
, 920 139 VoIP Multimedia Communication Server
MCS 5100 Rls 3 0 Practice Exam
Answer: B
Explanation: “rwx r‑‑ r‑‑” gives the owner read/write/execute, the group read/execute, and others no
permissions.
**Question 4.** Which command adds an Access Control List (ACL) entry that gives user *bob* write
permission to file *report.txt*?
A) chmod +a "bob allow write" report.txt
B) chown bob report.txt
C) setfacl -m u:bob:w report.txt
D) chmod u+b report.txt
Answer: A
Explanation: In macOS, `chmod +a "user allow permissions"` adds an ACL entry; option A correctly grants
write to *bob*.
**Question 5.** When a file downloaded from the Internet is marked with the quarantine attribute,
which macOS feature checks it before opening?
A) Gatekeeper
B) FileVault
C) SIP
D) LaunchServices
Answer: A
Explanation: Gatekeeper inspects quarantined files and may block them if they are not from an
identified developer or lack a valid signature.
**Question 6.** Which macOS 10.6 security feature isolates applications to limit their access to system
resources?
, 920 139 VoIP Multimedia Communication Server
MCS 5100 Rls 3 0 Practice Exam
A) Gatekeeper
B) Sandbox
C) FileVault
D) Keychain
Answer: B
Explanation: The Sandbox restricts an app’s capabilities, preventing it from accessing files or hardware
outside its allowed scope.
**Question 7.** Which System Preferences pane enables the built‑in Application Firewall?
A) Network
B) Security & Privacy
C) Sharing
D) Energy Saver
Answer: B
Explanation: The Application Firewall is configured under the Security & Privacy pane in macOS 10.6.
**Question 8.** Which command‑line utility in macOS 10.6 provides stateful packet filtering?
A) ipfw
B) pfctl
C) iptables
D) firewalld
Answer: A
Explanation: `ipfw` is the native IPv4/IPv6 firewall utility in OS X 10.6, allowing rule‑based packet
filtering.
, 920 139 VoIP Multimedia Communication Server
MCS 5100 Rls 3 0 Practice Exam
**Question 9.** To allow incoming connections for the *ssh* service only from the subnet
192.168.1.0/24 using *ipfw*, which rule is correct?
A) ipfw add allow tcp from any to any 22 in via en0
B) ipfw add allow tcp from 192.168.1.0/24 to any 22 in via en0
C) ipfw add deny tcp from any to any 22 in via en0
D) ipfw add allow udp from 192.168.1.0/24 to any 22 in via en0
Answer: B
Explanation: Rule B permits TCP traffic on port 22 from the specified subnet, matching the requirement.
**Question 10.** Which type of X.509 certificate is stored in the System keychain for server
authentication?
A) Root CA certificate
B) User certificate
C) Server certificate
D) Code‑signing certificate
Answer: C
Explanation: Server certificates are placed in the System keychain so services can present them during
TLS handshakes.
**Question 11.** Which macOS utility is used to generate a Certificate Signing Request (CSR) for a new
server certificate?
A) Keychain Access
B) Disk Utility
C) System Information
