Linux Foundation LFCS Exam Dumps & Practice Test Questions

Question 1:

Which two actions can be performed using the ifconfig command on a Linux system?

A. Activate or deactivate a network interface
B. Assign a kernel module to a network interface
C. Permit non-root users to alter network settings
D. Set the subnet mask on a network interface
E. Define which services are accessible via a network interface

Correct Answers: A, D

Explanation:

The ifconfig command is a legacy tool traditionally used in Unix and Linux systems to configure and manage network interfaces. While newer systems increasingly favor the ip command from the iproute2 suite, ifconfig remains relevant for basic interface management. Among its key capabilities, two stand out in this context: enabling or disabling network interfaces and configuring interface settings such as the netmask.

First, ifconfig can activate or deactivate a network interface using the up or down options. For example:

These commands respectively bring the interface eth0 online or offline. This functionality is useful for administrators who need to quickly isolate a device from the network or reactivate it after making changes.

Second, ifconfig allows administrators to modify the netmask for a network interface. The netmask determines which portion of an IP address designates the network and which part identifies the host. For example:

This changes the subnet mask of the interface, directly affecting how the system interprets and communicates with other IP addresses on the same network.

Now let's review why the other options are incorrect:

• B. Assigning kernel modules is outside the scope of ifconfig. Kernel modules are managed with tools like modprobe or insmod.

• C. Permitting non-root users to alter network configurations is not supported natively by ifconfig. These actions require administrative privileges (typically through sudo).

• E. Defining accessible services on an interface is not handled by ifconfig. Instead, services are managed by system services or firewall tools such as iptables or nftables.

In summary, ifconfig is primarily a network interface configuration utility. It can bring interfaces up or down and change IP-level settings like the netmask, making A and D the correct choices.

Question 2:

Which command helps you locate a program's binary, its manual page, and related configuration files on a Linux system?

A. dirname
B. which
C. basename
D. query
E. whereis

Correct Answer: E

Explanation:

The most effective command for identifying the location of a program’s executable, manual page, and often configuration files is whereis. It is commonly used by system administrators and developers to quickly find the relevant components associated with a software tool or utility.

• The binary/executable path: /usr/bin/ssh

• The configuration directory: /etc/ssh

• The manual (man) page: /usr/share/man/man1/ssh.1.gz

This comprehensive output allows users to locate all essential files tied to a command without manually searching file systems.

Now let’s evaluate the incorrect options:

• A. dirname: This command extracts the directory component from a file path. It doesn't perform searches or locate binaries. For example, dirname /usr/bin/ssh just returns /usr/bin.

• B. which: While useful, it only locates the executable in the user's $PATH. For instance, which ssh returns /usr/bin/ssh but does not provide man pages or config locations.

• C. basename: This command returns the filename from a given path. It does not perform any lookup or identification. For example, basename /usr/bin/ssh returns ssh.

• D. query: This is not a standard Linux command. Although package managers like rpm or dpkg may use subcommands like rpm -q, query alone is not suitable for locating program files.

In conclusion, whereis is the only tool among the given options that provides comprehensive insight into the locations of an application’s binary, documentation, and configuration files, making E the correct answer.

Question 3:

What kernel command line parameter should be used to instruct systemd to boot into rescue.target instead of the default boot target?

A. systemd.target=rescue.target
B. systemd.runlevel=rescue.target
C. systemd.service=rescue.target
D. systemd.default=rescue.target
E. systemd.unit=rescue.target

Correct Answer: E

Explanation:

On Linux systems using the systemd init system, the default target (which determines what services and environment the system boots into) can be changed dynamically at boot time via the kernel command line. This is often useful for debugging, system recovery, or entering a specific run level environment. To boot directly into rescue mode, you must set the correct systemd parameter on the kernel command line.

The rescue.target in systemd corresponds to a minimal environment with essential services, similar to single-user mode in traditional Unix or SysVinit systems. It is typically used for maintenance purposes when the system cannot boot normally or needs troubleshooting.
This is particularly important because targets in systemd represent states or levels of service availability, and the systemd.unit parameter allows full control over which of those targets to boot into.

Now, let’s address why the other options are incorrect:

• A. systemd.target=rescue.target: This is not recognized by systemd. The valid parameter is systemd.unit, not systemd.target.

• B. systemd.runlevel=rescue.target: Although this mimics the old runlevel terminology, systemd does not support this as a valid kernel parameter.

• C. systemd.service=rescue.target: This refers to a systemd service, but targets and services are different unit types. systemd.service expects a .service unit, not a .target.

• D. systemd.default=rescue.target: While systemd supports setting the default target permanently in configuration files, systemd.default is not a valid runtime kernel command line parameter.

In conclusion, the proper way to boot into rescue mode temporarily is by passing systemd.unit=rescue.target on the kernel boot line, making E the only correct option.

Question 4:

What is the output of the following shell command?

A. Hello World
B. eoo
C. Hll Wrld
D. eoo Hll Wrld

Correct Answer: C

Explanation:

This question tests knowledge of basic shell utilities, particularly the tr (translate) command, which is used for character-level transformations and deletions.

| tr -d aieou
This uses the tr command with the -d (delete) flag, which tells tr to remove all occurrences of the specified characters—in this case: a, i, e, o, and u. These are vowels (excluding capital letters, since tr is case-sensitive unless told otherwise).

Now, applying this to the string "Hello World":

• The characters to be removed: a, i, e, o, u

• Original string: Hello World

• After deletion:
  
  

• e in "Hello" is removed.

• o in "Hello" and "World" are removed.

• The remaining characters are:
  "Hll Wrld"

Why the other options are incorrect:

• A. Hello World – This is the original input and doesn't reflect the effect of tr -d.

• B. eoo – These are the characters that were removed, not what's left.

• D. eoo Hll Wrld – This is a made-up mix of removed and retained characters, which is not how tr works. The tr command outputs only the modified string, not a summary of deletions.

Therefore, the correct answer is C, since the tr -d aieou operation removes the lowercase vowels and results in Hll Wrld.

Question 5:

What is the correct command to use when you want to view the inode number of a specific file?

A. inode
B. ls
C. ln
D. cp

Correct Answer: B

Explanation:

To determine the inode number associated with a file in a Unix or Linux environment, the most effective and commonly used method is by leveraging the ls command with the -i option. But before diving into how the command works, it’s important to understand what an inode is and why it matters.

In Unix-like file systems, an inode (index node) is a data structure used to represent information about files and directories. Each file is associated with an inode, which contains metadata such as permissions, ownership, timestamps, and pointers to the data blocks where the actual file content is stored. However, the file name itself is stored separately in the directory structure and linked to its inode.

Now, to view this inode number from the shell, the ls command is most suitable when used with the -i flag. The command format is:

Let’s now evaluate the other options:

• A. inode: This is not a valid standalone command in Unix or Linux. While "inode" is a concept and is referenced within tools and documentation, it is not a command-line utility you can invoke directly.

• C. ln: The ln command is used to create hard or symbolic links to files. While a hard link points to the same inode as the original file, ln itself doesn’t display inode numbers. Thus, it’s not intended for viewing inode data.

• D. cp: This command is used for copying files or directories. It does not interact with or display inode numbers, and it creates a new inode for the destination file (since it’s a distinct copy), unlike ln.

In conclusion, the only command among the choices that allows users to view the inode number directly is ls with the -i flag. It’s a basic but powerful command for listing file attributes and is the correct answer to this question.

Question 6:

Which command allows a system administrator to modify the disk quota settings for a particular user?

A. edquota
B. repquota
C. quota -e
D. quota

Correct Answer: A

Explanation:

Managing disk space efficiently is a critical task in multi-user Unix or Linux systems. Disk quotas are implemented to restrict the amount of space and number of files that a user or group can utilize. These limits help prevent a single user from consuming excessive resources and ensure fair allocation across the system.

To modify or set disk quotas for a user, administrators require a command that allows editing of quota limits. This is precisely the function of the edquota command.

The edquota utility provides an interactive method (typically using the system's default text editor, such as vi) for editing quota limits on a per-user or per-group basis. When an administrator runs:

It opens a temporary file that lists the current soft and hard limits for blocks and inodes. The admin can adjust values directly in this editor. Once saved and closed, these new limits are applied to the specified user.

Let’s review the other choices to understand why they’re incorrect:

• B. repquota: This command is used for reporting quota usage. It provides a summary of how much disk space users or groups are using compared to their quota limits. It is purely informational and does not allow for editing or modifying quotas.

• C. quota -e: Although this seems plausible at first glance, it is not a valid or widely recognized option in standard quota utilities. There is no standard -e flag in the quota command for editing purposes. Its functionality might be misinterpreted or confused with custom scripts.

• D. quota: This basic command displays a user’s current quota usage. It tells the user how much space they are using and their defined limits. However, it cannot be used to change or set those limits.

In summary, the correct approach to modifying a user's disk quota is to use the edquota command. It gives administrators a direct and flexible interface to change quotas, making it the most appropriate tool for the task. None of the other options offer the capability to alter disk quota settings. Therefore, the correct answer is A

Question 7:

Which data format does NETCONF utilize to encapsulate configuration information within RPC (Remote Procedure Call) messages?

A. JSON-RPC
B. XML
C. YAML
D. JSON

Correct Answer: B

Explanation:

NETCONF (Network Configuration Protocol) is a standardized protocol designed by the IETF to support remote configuration and monitoring of network devices. One of its defining characteristics is the use of XML (Extensible Markup Language) as the encoding format for its messages, including RPC (Remote Procedure Call) requests and responses.

In NETCONF, XML is employed to provide a structured, human-readable, and extensible way to encode data. The communication model relies heavily on RPC mechanisms, where clients send XML-formatted requests and receive XML-formatted replies from NETCONF servers (network devices). These XML messages follow a specific structure, ensuring consistency across diverse platforms and vendors.

For instance, an RPC call to retrieve configuration data might look like this:

This snippet clearly illustrates how the <rpc> element encapsulates the <get-config> request using XML. The response from the server will also be formatted in XML, typically using <rpc-reply> and other nested elements to return the requested data.

XML's advantages in NETCONF include:

• Standardization: XML is a mature, widely accepted data representation standard, which fosters interoperability across different platforms.

• Extensibility: Its hierarchical and tag-based structure allows easy extension and customization of data models.

• Validation: XML data can be validated against schema definitions (XSD), ensuring the structure and content are correct.

• Human-readability: Although verbose, XML remains readable and editable, especially useful for debugging and manual reviews.

Alternatives such as JSON, YAML, and JSON-RPC are common in RESTful APIs and modern web services but are not supported by NETCONF for message encoding. JSON and YAML are simpler and more compact but lack the schema validation and extensibility features that XML offers within the context of NETCONF. JSON-RPC is a separate RPC mechanism and is not used with NETCONF.

To conclude, NETCONF strictly relies on XML for its messaging format, especially for wrapping configuration data inside RPC calls. This makes B. XML the correct answer.

Question 8:

Which characteristic of YANG enables the reuse of data structures and simplifies network model design?

A. use identification
B. error prediction
C. JAVA compatibility
D. reusable types and groupings

Correct Answer: D

Explanation:

YANG (Yet Another Next Generation) is a data modeling language developed by the IETF to define structured data models used in network configuration and management. One of its most powerful and essential features is the support for reusable types and groupings, which promotes modularity and consistency in network automation models.

Reusable components in YANG come in two main forms: typedefs and groupings.

1. Typedefs (Reusable Data Types):
   YANG allows the creation of custom data types using the typedef statement. For example, instead of redefining a common type like an IP address or a percentage multiple times, a YANG modeler can define it once and reuse it throughout the module. These typedefs can include constraints such as value ranges, length restrictions, and regex patterns, making them powerful for enforcing data integrity.

2. Groupings (Reusable Structures):
   The grouping construct allows developers to define a set of related schema nodes—such as leaf nodes or containers—and reuse them in multiple places using the uses keyword. This feature reduces code duplication and helps ensure consistency across the data model. For instance, a grouping for a network interface may include fields for IP address, status, and speed, and this grouping can then be applied wherever interface data is needed.

Benefits of reusability in YANG:

• Consistency: Ensures the same structure and constraints are applied wherever a type or grouping is reused.

• Maintainability: Centralized definitions mean that updates or bug fixes only need to be made in one place.

• Modularity: Helps build scalable and well-structured models that can evolve without breaking existing functionality.

Now, let’s review the incorrect options:

• A. use identification: YANG allows the use of identity statements, but this is not primarily about reusability.

• B. error prediction: YANG does not predict errors; it defines schemas and constraints. Error handling is handled by protocols like NETCONF or RESTCONF.

• C. JAVA compatibility: YANG is language-neutral. While it can be used to generate Java code, it is not specifically compatible with Java.

In summary, the ability to define and reuse types and groupings is a central feature of YANG that promotes clean, efficient, and scalable network data modeling. Hence, the correct answer is D. reusable types and groupings.

Question 9:

You want to ensure that a Bash script named /usr/local/bin/backup.sh runs automatically every day at 2:30 AM. 

Which of the following is the most appropriate method to achieve this?

A. Add an entry to /etc/fstab
B. Use the at command to schedule it
C. Create a systemd timer
D. Add a crontab entry for the user

Correct Answer: D

Explanation:

To schedule recurring tasks in Linux, especially those that happen at the same time daily, the cron service is the most common and effective tool. In this case, the task is to run a script (/usr/local/bin/backup.sh) every day at 2:30 AM, which perfectly fits the use case for crontab.

This line can be added using crontab -e for a specific user. The cron daemon will then execute this script automatically at the designated time.

Let’s review the incorrect options:

• A. /etc/fstab is used to define how disk partitions, file systems, or remote shares are mounted — not for scheduling tasks.

• B. at command is useful for one-time future tasks, not repetitive ones. You would have to reschedule it every day manually.

• C. systemd timers are a modern alternative to cron but more complex to configure. While valid, they’re not the most appropriate method for a simple daily job, especially in the LFCS context where foundational skills are emphasized.

Therefore, using crontab to schedule a recurring task is the best and simplest approach and directly aligns with the LFCS objectives related to job scheduling.

Question 10:

You created a new user named devuser and need to allow this user to run administrative commands using sudo without entering a password. 

Which file should you modify, and what is the correct line to add?

A. /etc/sudoers with devuser ALL=(ALL) NOPASSWD: ALL
B. /etc/passwd with a special flag
C. /etc/shadow to remove the password field
D. /home/devuser/.bashrc with sudo su command

Correct Answer: A

Explanation:

To allow a user to run administrative commands without a password prompt, you must configure the sudoers file correctly. The correct approach is to use the visudo command to safely edit /etc/sudoers or create a file under /etc/sudoers.d/.

This line grants devuser the ability to execute any command as any user, without being prompted for a password.

Let’s assess the incorrect options:

• B. /etc/passwd defines user account information but has nothing to do with sudo or privilege escalation.

• C. /etc/shadow holds password hashes. Altering this directly for sudo behavior is incorrect and insecure.

• D. .bashrc is a user shell configuration file and not suitable for granting or controlling privilege escalation with sudo.

Using visudo ensures that syntax errors won’t break sudo access. If a syntax mistake is made in the sudoers file and saved incorrectly, it can lock out administrative access entirely — a critical error on production systems.

The LFCS exam frequently tests tasks involving user privilege management, and this scenario is a common real-world requirement for allowing developers or admins to execute elevated commands with ease and automation, such as in scripting environments or CI/CD pipelines.