Site Reliability Test

Q: What topics are covered in the Site Reliability Test?

系统设计和建筑 基础架构作为代码（IAC） 连续集成/连续部署（CI/CD） 对网络概念的理解 监视和记录系统 事件管理和验尸分析 性能调整和负载平衡 数据库的可靠性和可扩展性 对安全原则的理解 灾难恢复计划和执行 微服务和容器化 服务水平目标（SLO）和错误预算 交通管理和分布式系统 高可用性和弹性策略 能力计划和资源优化

About the test:

网站可靠性工程师（SRE）测试使用基于方案的问题来评估云技术，系统设计，自动化和故障排除技能的知识。它评估对基础架构作为代码，连续集成和部署以及监视系统的理解。该测试还衡量了脚本语言的熟练程度和基础架构解决问题的动手编码。它进一步包括现实情况，以检查批判性思维和事件管理能力。

Covered skills:

系统设计和建筑
连续集成/连续部署（CI/CD）
监视和记录系统
性能调整和负载平衡
对安全原则的理解
微服务和容器化
交通管理和分布式系统
能力计划和资源优化

基础架构作为代码（IAC）
对网络概念的理解
事件管理和验尸分析
数据库的可靠性和可扩展性
灾难恢复计划和执行
服务水平目标（SLO）和错误预算
高可用性和弹性策略

Try practice test

Start 14-day free trial

9 reasons why

Adaface Site Reliability Assessment Test is the most accurate way to shortlist 站点可靠性工程师（SRE）s

Reason #1

Tests for on-the-job skills

The Site Reliability Test helps recruiters and hiring managers identify qualified candidates from a pool of resumes, and helps in taking objective hiring decisions. It reduces the administrative overhead of interviewing too many candidates and saves time by filtering out unqualified candidates at the first step of the hiring process.

The test screens for the following skills that hiring managers look for in candidates:

精通网站可靠性工程实践和原则
DevOps方法和工具的经验
码头容器的知识
对Kubernetes编排的理解
设计强大的系统和体系结构的能力
熟悉基础架构作为代码（IAC）概念
连续集成/连续部署（CI/CD）管道方面的专业知识
分布式系统中网络概念的理解
实施监控和伐木系统的技巧
精通事件管理和验尸分析
具有性能调整和负载平衡的经验
确保数据库可靠性和可扩展性方面的专业知识
系统设计中的安全原理知识
熟悉灾难恢复计划和执行
了解微服务和容器化
定义服务水平目标（SLO）和错误预算的技能
交通管理和分布式系统的知识
高可用性和弹性策略方面的专业知识
执行能力计划和资源优化的能力

Reason #2

No trick questions

Traditional assessment tools use trick questions and puzzles for the screening, which creates a lot of frustration among candidates about having to go through irrelevant screening assessments.

View sample questions

The main reason we started Adaface is that traditional pre-employment assessment platforms are not a fair way for companies to evaluate candidates. At Adaface, our mission is to help companies find great candidates by assessing on-the-job skills required for a role.

Why we started Adaface

Try practice test

Start 14-day free trial

Reason #3

Non-googleable questions

We have a very high focus on the quality of questions that test for on-the-job skills. Every question is non-googleable and we have a very high bar for the level of subject matter experts we onboard to create these questions. We have crawlers to check if any of the questions are leaked online. If/ when a question gets leaked, we get an alert. We change the question for you & let you know.

How we design questions

这些只是我们库中有10,000多个问题的一个小样本。关于此的实际问题站点可靠性测试将是不可行的.

🧐 Question
Medium Error Budget Management Latency Monitoring Error Budgets Distributed Tracing	Try practice test
You are a site reliability engineer responsible for maintaining a microservices-based e-commerce platform. Your system consists of several independent services, each deployed on its separate container within a Kubernetes cluster. Your organization follows a strict Service Level Objective (SLO) to maintain user satisfaction, which mandates that the 95th percentile latency for all requests over a 30-day period should not exceed 200 ms. The following pseudo-code represents a simplified version of the request processing in your system: You realize that over the first two weeks of the current 30-day window, the 95th percentile latency has risen to 250 ms. Analyzing further, you discover that out of 10 million requests, 600,000 requests took more than 200 ms to complete. Given these facts, which of the following is the most effective course of action that you can take to troubleshoot and reduce the system's latency issues? A: Change the latency log level to debug to gather more information. B: Increase the SLO for latency to 250 ms to accommodate the current system performance. C: Introduce more instances of each microservice to handle the increased load. D: Implement a distributed tracing mechanism to identify the microservices contributing most to the latency. E: Implement request throttling to reduce the overall number of requests.
Medium Incident Response Procedure Incident Management Disaster Recovery System Optimization	Try practice test
You are an SRE for a large-scale distributed system. The system architecture includes five primary servers (P1 to P5) and three backup servers (B1 to B3). The system uses an advanced load balancer that distributes the workload across the primary servers evenly. One day, the monitoring system triggers an alert that server P5 is not responding. The pseudo-code for the current incident response procedure is as follows: The function 'replaceServer(server)' replaces the failed server with a new one from a pool of spare servers, which takes around 30 minutes. The current discussion revolves around modifying this procedure to improve system resilience and minimize potential downtime. The backup servers are underutilized and could be leveraged more effectively. Also, the load balancer can dynamically shift workloads based on server availability and response time. Based on the situation above, what is the best approach to optimize the incident response procedure? A: Implement an early warning system to predict server failures and prevent them. B: Upon failure detection, immediately divert traffic to backup servers, then attempt to reboot the primary server, and replace if necessary. C: Replace the failed server without attempting a reboot and keep the traffic on primary servers. D: Enable auto-scaling to add more servers when a primary server fails. E: Switch to a more advanced load balancer that can detect and handle server failures independently.
Medium Service Balancer Decision-making Load Balancing Distributed Systems Concurrent Processing	Try practice test
You are a Site Reliability Engineer (SRE) working on a distributed system with a load balancer that distributes requests across a number of servers based on the current load. The decision algorithm for load balancing is written in pseudo-code as follows: The system receives a large burst of requests. In response to this, some engineers propose increasing the `threshold` value to allow for more requests to be handled concurrently by each server. Others argue that instead, we should increase the number of servers to distribute the load more evenly. Consider that the system has auto-scaling capabilities based on the average load of all servers, but the scaling operation takes about 15 minutes to add new servers to the pool. Also, the servers' performance degrades sharply if the load is much above the threshold. One of the engineers also proposes modifying the getServer function logic to distribute the incoming load one by one across all servers to trigger the average load to rise faster. Based on this scenario, what is the best approach? A: Increase the `threshold` value to allow more requests on each server. B: Add more servers to distribute the load, regardless of the auto-scaling delay. C: Modify the getServer function to distribute the incoming load one by one across all servers to trigger the average load to rise faster. D: Increase the `threshold` and add more servers simultaneously. E: Manually trigger the auto-scaling process before the load increases.
Medium Resource Analysis Process Management System Performance Log Analysis	Try practice test
As a senior DevOps engineer, you are tasked with diagnosing performance issues on a Linux server running Ubuntu 20.04. The server hosts several critical applications, but lately, users have been experiencing significant slowness. Initial monitoring shows that CPU and memory utilization are consistently high. To identify the root cause, you check the output of `top` and `ps` commands, which indicate that a particular process is consuming an unusually high amount of resources. However, the process name is generic and does not clearly indicate which application or service it belongs to. You also examine `/var/log/syslog` for any unusual entries but find nothing out of the ordinary. Based on this situation, which of the following steps would most effectively help you identify and resolve the performance issue? A: Increase the server's physical memory and CPU capacity. B: Use the `lsof` command to identify the files opened by the suspect process. C: Reboot the server to reset all processes. D: Examine the `/etc/hosts` file for any incorrect configurations. E: Run the `netstat` command to check for abnormal network activity. F: Check the crontab for any recently added scheduled tasks.
Medium Streamlined DevOps Continuous Integration Scripting	Try practice test
You are in charge of developing a Bash script for setting up a continuous integration pipeline for a web application. The source code is hosted in a Git repository. The script's goals include: 1. Ensuring the local copy of the repository in /var/www/html is updated to the latest version. 2. Creating a .env file with APP_ENV=production in the project root if it doesn't already exist. 3. Running a test suite with ./run_tests.sh and handling any test failures appropriately. 4. Logging the current timestamp and commit hash in deployment_log.txt in the project root if tests pass. Which of the following script options would most effectively and safely accomplish these tasks?
Medium Docker Multistage Build Analysis Multistage Builds Optimization	Try practice test
Consider the following Dockerfile, which utilizes multistage builds. The aim is to build a lightweight, optimized image that just runs the application. The Dockerfile first defines a base image that includes Node.js and npm, then it creates an intermediate image to install the npm dependencies. Afterwards, it runs the tests in another stage and finally, creates the release image. Which of the following statements are true? A: The final image will include the test scripts. B: If a test fails, the final image will not be created. C: The node_modules directory in the final image comes from the base image. D: The final image will only contain the necessary application files and dependencies. E: If the application's source code changes, only the release stage needs to be rebuilt.
Easy Docker Networking and Volume Mounting Interplay Networking Volume Mounting	Try practice test
You have two docker containers, X and Y. Container X is running a web service listening on port 8080, and container Y is supposed to consume this service. Both containers are created from images that don't have any special network configurations. Container X has a Dockerfile as follows: And, you build and run it with the following commands: Container Y is also running alpine with python installed, and it's supposed to read data from the `/app/data` directory and send a GET request to `http://localhost:8080` every 5 minutes. The Dockerfile for container B is: And you run it with: Assuming all the python scripts work perfectly and firewall isn't blocking any connections, you find that container Y can't access the web service of container X via `http://localhost:8080` and also it can't read the data in `/app/data` directory. What could be the potential reason(s)? A: Y can't access X's web service because they're in different Docker networks. B: Y can't read the data because the volume is not shared correctly. C: Both A and B are correct. D: Both A and B are incorrect.
Medium Dockerfile Optimization Dockerfile Multi-stage builds Layer Caching	Try practice test
You have been asked to optimize a Dockerfile for a Python application that involves a heavy dependency installation. Here is the Dockerfile you are starting with: Given that the application's source code changes frequently but the dependencies listed in requirements.txt rarely change, how can you optimize this Dockerfile to take advantage of Docker's layer caching, reducing the build time? A: Move the `RUN pip install` command to before the `COPY` command. B: Change `COPY . /app` to `COPY ./app.py /app` and move the `RUN pip install` command to before the `COPY` command. C: Add `RUN pip cache purge` before `RUN pip install`. D: Replace the base image with `python:3.8-slim`. E: Implement multi-stage builds.
Medium Dockerfile Updates Cache	Try practice test
Check the following Dockerfile used for a project (STAGE 1): We created an image from this Dockerfile on Dec 14 2021. A couple of weeks after Dec 14 2021, Ubuntu released new security updates to their repository. After 2 months, we modified the file (STAGE 2): Couple of weeks later, we further modified the file to add a local file ada.txt to /ada.txt (STAGE 3): (Note that ada.txt exists in /home/adaface and the dockerfile exists in /home/code folders) Pick correct statements: A: If we run “docker build .” at STAGE 2, new Ubuntu updates will be fetched because apt-get update will be run again since cache is invalidated for all lines/layers of Dockerfile when a new line is added. B: If we run “docker build .” at STAGE 2, new Ubuntu updates will not be fetched since cache is invalidated only for last two lines of the updated Dockerfile. Since the first two commands remain the same, cached layers are re-used skipping apt get update. C: To skip Cache, “docker build -no-cache .” can be used at STAGE 2. This will ensure new Ubuntu updates are picked up. D: Docker command “docker build .” at STAGE 3 works as expected and adds local file ada.txt to the image. E: Docker command “docker build .” at STAGE 3 gives an error “no such file or directory” since /home/adaface/ada.txt is not part of the Dockerfile context.
Medium Efficient Dockerfile Dockerfile	Try practice test
Review the following Dockerfiles that work on two projects (project and project2): All Docker files have the same end result: - ‘project’ is cloned from git. After running few commands, ‘project’ code is removed. - ‘project2’ is copied from file system and permissions to the folder is changed. Pick the correct statements: A: File 1 is the most efficient of all. B: File 2 is the most efficient of all. C: File 3 is the most efficient of all. D: File 4 is the most efficient of all. E: Merging multiple RUN commands into a single RUN command is efficient for ‘project’ since each RUN command creates a new layer with changed files and folders. Deleting files with RUN only marks these files as deleted but does not reclaim disk space. F: Copying ‘project2’ files and changing ownership in two separate commands will result in two layers since Docker duplicates all the files twice.
Medium ConfigMap and Secrets Interaction Resource Management Security	Try practice test
In a Kubernetes cluster, you are working on configuring a new deployment that should be able to access specific environment variables through both ConfigMap and Secrets resources. The deployment YAML is structured as follows: You have applied the above YAML successfully without any errors. Now, you are about to configure a service to expose the deployment. Before doing that, you want to confirm the security and setup implications. Based on the above configuration, which of the following statements are true? 1. The DATABASE_PASSWORD will be mounted as an environment variable in plain text. 2. The ConfigMap data can be updated and the changes will be reflected automatically in the running pods without any need for a redeployment. 3. If a potential attacker gains access to the cluster, they would be able to retrieve the DATABASE_PASSWORD in plain text from the secrets resource as it is defined in stringData. 4. The APP_ENV and DATABASE_URL values are securely stored and cannot be accessed by non-admin users. 5. If a new container in the same pod is created, it would automatically have the DATABASE_PASSWORD environment variable configured.
Medium Ingress from namespace Network Network Policies	Try practice test
You are tasked with deploying a Kubernetes network policy. Here are the specifications: - Name of the policy: adaface-namespace - Policy to be deployed in ‘chatbot’ namespace - The policy should allow ALL traffic only from ‘tester’ namespace - Policy should not allow communication between pods in the same namespace - Traffic only from ‘tester’ namespace is allowed on all ports Which of the following configuration files is BEST suited to create required dependencies and deploy the network policy?
Medium Pod Affinity and Resource Quota Compliance Pod Scheduling Resource Management	Try practice test
You are working on a Kubernetes project where you need to ensure that certain pods get scheduled on nodes based on the presence of other pods and to limit the amount of resources that can be consumed in a namespace. You have been given the following YAML file which contains a combination of a pod definition and a resource quota: With the application of the above YAML configuration, assess the validity of the statements and choose the correct option that lists all the true statements. 1. The critical-pod will only be scheduled on nodes where at least one pod with a label security=high is already running. 2. The critical-pod is adhering to the resource quotas defined in the compute-quota. 3. The compute-quota restricts the namespace to only allow a total of 1 CPU and 1Gi memory in requests and 2 CPUs and 2Gi memory in limits across all pods. 4. If a node has multiple pods labeled with security=high, the critical-pod can potentially be scheduled on that node, given other scheduling constraints are met. 5. The critical-pod exceeds the defined memory request quota as per the compute-quota.
Easy Resource limits Pods Containers	Try practice test
How would you deploy a Kubernetes pod with the following specifications: - Name of pod: adaface - Resource limits: 1 CPU and 512Mi memory - Image: haproxy A: kubectl run adaface --image=haproxy --limits='cpu=1,memory=512Mi' B: kubectl run adaface --image=haproxy --requests='cpu=1,memory=512Mi'

	🧐 Question	🔧 Skill
	Medium Error Budget Management Latency Monitoring Error Budgets Distributed Tracing	3 mins Site Reliability Engineering	Try practice test
You are a site reliability engineer responsible for maintaining a microservices-based e-commerce platform. Your system consists of several independent services, each deployed on its separate container within a Kubernetes cluster. Your organization follows a strict Service Level Objective (SLO) to maintain user satisfaction, which mandates that the 95th percentile latency for all requests over a 30-day period should not exceed 200 ms. The following pseudo-code represents a simplified version of the request processing in your system: You realize that over the first two weeks of the current 30-day window, the 95th percentile latency has risen to 250 ms. Analyzing further, you discover that out of 10 million requests, 600,000 requests took more than 200 ms to complete. Given these facts, which of the following is the most effective course of action that you can take to troubleshoot and reduce the system's latency issues? A: Change the latency log level to debug to gather more information. B: Increase the SLO for latency to 250 ms to accommodate the current system performance. C: Introduce more instances of each microservice to handle the increased load. D: Implement a distributed tracing mechanism to identify the microservices contributing most to the latency. E: Implement request throttling to reduce the overall number of requests.
	Medium Incident Response Procedure Incident Management Disaster Recovery System Optimization	3 mins Site Reliability Engineering	Try practice test
You are an SRE for a large-scale distributed system. The system architecture includes five primary servers (P1 to P5) and three backup servers (B1 to B3). The system uses an advanced load balancer that distributes the workload across the primary servers evenly. One day, the monitoring system triggers an alert that server P5 is not responding. The pseudo-code for the current incident response procedure is as follows: The function 'replaceServer(server)' replaces the failed server with a new one from a pool of spare servers, which takes around 30 minutes. The current discussion revolves around modifying this procedure to improve system resilience and minimize potential downtime. The backup servers are underutilized and could be leveraged more effectively. Also, the load balancer can dynamically shift workloads based on server availability and response time. Based on the situation above, what is the best approach to optimize the incident response procedure? A: Implement an early warning system to predict server failures and prevent them. B: Upon failure detection, immediately divert traffic to backup servers, then attempt to reboot the primary server, and replace if necessary. C: Replace the failed server without attempting a reboot and keep the traffic on primary servers. D: Enable auto-scaling to add more servers when a primary server fails. E: Switch to a more advanced load balancer that can detect and handle server failures independently.
	Medium Service Balancer Decision-making Load Balancing Distributed Systems Concurrent Processing	2 mins Site Reliability Engineering	Try practice test
You are a Site Reliability Engineer (SRE) working on a distributed system with a load balancer that distributes requests across a number of servers based on the current load. The decision algorithm for load balancing is written in pseudo-code as follows: The system receives a large burst of requests. In response to this, some engineers propose increasing the `threshold` value to allow for more requests to be handled concurrently by each server. Others argue that instead, we should increase the number of servers to distribute the load more evenly. Consider that the system has auto-scaling capabilities based on the average load of all servers, but the scaling operation takes about 15 minutes to add new servers to the pool. Also, the servers' performance degrades sharply if the load is much above the threshold. One of the engineers also proposes modifying the getServer function logic to distribute the incoming load one by one across all servers to trigger the average load to rise faster. Based on this scenario, what is the best approach? A: Increase the `threshold` value to allow more requests on each server. B: Add more servers to distribute the load, regardless of the auto-scaling delay. C: Modify the getServer function to distribute the incoming load one by one across all servers to trigger the average load to rise faster. D: Increase the `threshold` and add more servers simultaneously. E: Manually trigger the auto-scaling process before the load increases.
	Medium Resource Analysis Process Management System Performance Log Analysis	3 mins DevOps	Try practice test
As a senior DevOps engineer, you are tasked with diagnosing performance issues on a Linux server running Ubuntu 20.04. The server hosts several critical applications, but lately, users have been experiencing significant slowness. Initial monitoring shows that CPU and memory utilization are consistently high. To identify the root cause, you check the output of `top` and `ps` commands, which indicate that a particular process is consuming an unusually high amount of resources. However, the process name is generic and does not clearly indicate which application or service it belongs to. You also examine `/var/log/syslog` for any unusual entries but find nothing out of the ordinary. Based on this situation, which of the following steps would most effectively help you identify and resolve the performance issue? A: Increase the server's physical memory and CPU capacity. B: Use the `lsof` command to identify the files opened by the suspect process. C: Reboot the server to reset all processes. D: Examine the `/etc/hosts` file for any incorrect configurations. E: Run the `netstat` command to check for abnormal network activity. F: Check the crontab for any recently added scheduled tasks.
	Medium Streamlined DevOps Continuous Integration Scripting	2 mins DevOps	Try practice test
You are in charge of developing a Bash script for setting up a continuous integration pipeline for a web application. The source code is hosted in a Git repository. The script's goals include: 1. Ensuring the local copy of the repository in /var/www/html is updated to the latest version. 2. Creating a .env file with APP_ENV=production in the project root if it doesn't already exist. 3. Running a test suite with ./run_tests.sh and handling any test failures appropriately. 4. Logging the current timestamp and commit hash in deployment_log.txt in the project root if tests pass. Which of the following script options would most effectively and safely accomplish these tasks?
	Medium Docker Multistage Build Analysis Multistage Builds Optimization	3 mins Docker	Try practice test
Consider the following Dockerfile, which utilizes multistage builds. The aim is to build a lightweight, optimized image that just runs the application. The Dockerfile first defines a base image that includes Node.js and npm, then it creates an intermediate image to install the npm dependencies. Afterwards, it runs the tests in another stage and finally, creates the release image. Which of the following statements are true? A: The final image will include the test scripts. B: If a test fails, the final image will not be created. C: The node_modules directory in the final image comes from the base image. D: The final image will only contain the necessary application files and dependencies. E: If the application's source code changes, only the release stage needs to be rebuilt.
	Easy Docker Networking and Volume Mounting Interplay Networking Volume Mounting	3 mins Docker	Try practice test
You have two docker containers, X and Y. Container X is running a web service listening on port 8080, and container Y is supposed to consume this service. Both containers are created from images that don't have any special network configurations. Container X has a Dockerfile as follows: And, you build and run it with the following commands: Container Y is also running alpine with python installed, and it's supposed to read data from the `/app/data` directory and send a GET request to `http://localhost:8080` every 5 minutes. The Dockerfile for container B is: And you run it with: Assuming all the python scripts work perfectly and firewall isn't blocking any connections, you find that container Y can't access the web service of container X via `http://localhost:8080` and also it can't read the data in `/app/data` directory. What could be the potential reason(s)? A: Y can't access X's web service because they're in different Docker networks. B: Y can't read the data because the volume is not shared correctly. C: Both A and B are correct. D: Both A and B are incorrect.
	Medium Dockerfile Optimization Dockerfile Multi-stage builds Layer Caching	2 mins Docker	Try practice test
You have been asked to optimize a Dockerfile for a Python application that involves a heavy dependency installation. Here is the Dockerfile you are starting with: Given that the application's source code changes frequently but the dependencies listed in requirements.txt rarely change, how can you optimize this Dockerfile to take advantage of Docker's layer caching, reducing the build time? A: Move the `RUN pip install` command to before the `COPY` command. B: Change `COPY . /app` to `COPY ./app.py /app` and move the `RUN pip install` command to before the `COPY` command. C: Add `RUN pip cache purge` before `RUN pip install`. D: Replace the base image with `python:3.8-slim`. E: Implement multi-stage builds.
	Medium Dockerfile Updates Cache	2 mins Docker	Try practice test
Check the following Dockerfile used for a project (STAGE 1): We created an image from this Dockerfile on Dec 14 2021. A couple of weeks after Dec 14 2021, Ubuntu released new security updates to their repository. After 2 months, we modified the file (STAGE 2): Couple of weeks later, we further modified the file to add a local file ada.txt to /ada.txt (STAGE 3): (Note that ada.txt exists in /home/adaface and the dockerfile exists in /home/code folders) Pick correct statements: A: If we run “docker build .” at STAGE 2, new Ubuntu updates will be fetched because apt-get update will be run again since cache is invalidated for all lines/layers of Dockerfile when a new line is added. B: If we run “docker build .” at STAGE 2, new Ubuntu updates will not be fetched since cache is invalidated only for last two lines of the updated Dockerfile. Since the first two commands remain the same, cached layers are re-used skipping apt get update. C: To skip Cache, “docker build -no-cache .” can be used at STAGE 2. This will ensure new Ubuntu updates are picked up. D: Docker command “docker build .” at STAGE 3 works as expected and adds local file ada.txt to the image. E: Docker command “docker build .” at STAGE 3 gives an error “no such file or directory” since /home/adaface/ada.txt is not part of the Dockerfile context.
	Medium Efficient Dockerfile Dockerfile	2 mins Docker	Try practice test
Review the following Dockerfiles that work on two projects (project and project2): All Docker files have the same end result: - ‘project’ is cloned from git. After running few commands, ‘project’ code is removed. - ‘project2’ is copied from file system and permissions to the folder is changed. Pick the correct statements: A: File 1 is the most efficient of all. B: File 2 is the most efficient of all. C: File 3 is the most efficient of all. D: File 4 is the most efficient of all. E: Merging multiple RUN commands into a single RUN command is efficient for ‘project’ since each RUN command creates a new layer with changed files and folders. Deleting files with RUN only marks these files as deleted but does not reclaim disk space. F: Copying ‘project2’ files and changing ownership in two separate commands will result in two layers since Docker duplicates all the files twice.
	Medium ConfigMap and Secrets Interaction Resource Management Security	2 mins Kubernetes	Try practice test
In a Kubernetes cluster, you are working on configuring a new deployment that should be able to access specific environment variables through both ConfigMap and Secrets resources. The deployment YAML is structured as follows: You have applied the above YAML successfully without any errors. Now, you are about to configure a service to expose the deployment. Before doing that, you want to confirm the security and setup implications. Based on the above configuration, which of the following statements are true? 1. The DATABASE_PASSWORD will be mounted as an environment variable in plain text. 2. The ConfigMap data can be updated and the changes will be reflected automatically in the running pods without any need for a redeployment. 3. If a potential attacker gains access to the cluster, they would be able to retrieve the DATABASE_PASSWORD in plain text from the secrets resource as it is defined in stringData. 4. The APP_ENV and DATABASE_URL values are securely stored and cannot be accessed by non-admin users. 5. If a new container in the same pod is created, it would automatically have the DATABASE_PASSWORD environment variable configured.
	Medium Ingress from namespace Network Network Policies	3 mins Kubernetes	Try practice test
You are tasked with deploying a Kubernetes network policy. Here are the specifications: - Name of the policy: adaface-namespace - Policy to be deployed in ‘chatbot’ namespace - The policy should allow ALL traffic only from ‘tester’ namespace - Policy should not allow communication between pods in the same namespace - Traffic only from ‘tester’ namespace is allowed on all ports Which of the following configuration files is BEST suited to create required dependencies and deploy the network policy?
	Medium Pod Affinity and Resource Quota Compliance Pod Scheduling Resource Management	2 mins Kubernetes	Try practice test
You are working on a Kubernetes project where you need to ensure that certain pods get scheduled on nodes based on the presence of other pods and to limit the amount of resources that can be consumed in a namespace. You have been given the following YAML file which contains a combination of a pod definition and a resource quota: With the application of the above YAML configuration, assess the validity of the statements and choose the correct option that lists all the true statements. 1. The critical-pod will only be scheduled on nodes where at least one pod with a label security=high is already running. 2. The critical-pod is adhering to the resource quotas defined in the compute-quota. 3. The compute-quota restricts the namespace to only allow a total of 1 CPU and 1Gi memory in requests and 2 CPUs and 2Gi memory in limits across all pods. 4. If a node has multiple pods labeled with security=high, the critical-pod can potentially be scheduled on that node, given other scheduling constraints are met. 5. The critical-pod exceeds the defined memory request quota as per the compute-quota.
	Easy Resource limits Pods Containers	3 mins Kubernetes	Try practice test
How would you deploy a Kubernetes pod with the following specifications: - Name of pod: adaface - Resource limits: 1 CPU and 512Mi memory - Image: haproxy A: kubectl run adaface --image=haproxy --limits='cpu=1,memory=512Mi' B: kubectl run adaface --image=haproxy --requests='cpu=1,memory=512Mi'

	🧐 Question	🔧 Skill	💪 Difficulty	⌛ Time
	Error Budget Management Latency Monitoring Error Budgets Distributed Tracing	Site Reliability Engineering	Medium	3 mins	Try practice test
You are a site reliability engineer responsible for maintaining a microservices-based e-commerce platform. Your system consists of several independent services, each deployed on its separate container within a Kubernetes cluster. Your organization follows a strict Service Level Objective (SLO) to maintain user satisfaction, which mandates that the 95th percentile latency for all requests over a 30-day period should not exceed 200 ms. The following pseudo-code represents a simplified version of the request processing in your system: You realize that over the first two weeks of the current 30-day window, the 95th percentile latency has risen to 250 ms. Analyzing further, you discover that out of 10 million requests, 600,000 requests took more than 200 ms to complete. Given these facts, which of the following is the most effective course of action that you can take to troubleshoot and reduce the system's latency issues? A: Change the latency log level to debug to gather more information. B: Increase the SLO for latency to 250 ms to accommodate the current system performance. C: Introduce more instances of each microservice to handle the increased load. D: Implement a distributed tracing mechanism to identify the microservices contributing most to the latency. E: Implement request throttling to reduce the overall number of requests.
	Incident Response Procedure Incident Management Disaster Recovery System Optimization	Site Reliability Engineering	Medium	3 mins	Try practice test
You are an SRE for a large-scale distributed system. The system architecture includes five primary servers (P1 to P5) and three backup servers (B1 to B3). The system uses an advanced load balancer that distributes the workload across the primary servers evenly. One day, the monitoring system triggers an alert that server P5 is not responding. The pseudo-code for the current incident response procedure is as follows: The function 'replaceServer(server)' replaces the failed server with a new one from a pool of spare servers, which takes around 30 minutes. The current discussion revolves around modifying this procedure to improve system resilience and minimize potential downtime. The backup servers are underutilized and could be leveraged more effectively. Also, the load balancer can dynamically shift workloads based on server availability and response time. Based on the situation above, what is the best approach to optimize the incident response procedure? A: Implement an early warning system to predict server failures and prevent them. B: Upon failure detection, immediately divert traffic to backup servers, then attempt to reboot the primary server, and replace if necessary. C: Replace the failed server without attempting a reboot and keep the traffic on primary servers. D: Enable auto-scaling to add more servers when a primary server fails. E: Switch to a more advanced load balancer that can detect and handle server failures independently.
	Service Balancer Decision-making Load Balancing Distributed Systems Concurrent Processing	Site Reliability Engineering	Medium	2 mins	Try practice test
You are a Site Reliability Engineer (SRE) working on a distributed system with a load balancer that distributes requests across a number of servers based on the current load. The decision algorithm for load balancing is written in pseudo-code as follows: The system receives a large burst of requests. In response to this, some engineers propose increasing the `threshold` value to allow for more requests to be handled concurrently by each server. Others argue that instead, we should increase the number of servers to distribute the load more evenly. Consider that the system has auto-scaling capabilities based on the average load of all servers, but the scaling operation takes about 15 minutes to add new servers to the pool. Also, the servers' performance degrades sharply if the load is much above the threshold. One of the engineers also proposes modifying the getServer function logic to distribute the incoming load one by one across all servers to trigger the average load to rise faster. Based on this scenario, what is the best approach? A: Increase the `threshold` value to allow more requests on each server. B: Add more servers to distribute the load, regardless of the auto-scaling delay. C: Modify the getServer function to distribute the incoming load one by one across all servers to trigger the average load to rise faster. D: Increase the `threshold` and add more servers simultaneously. E: Manually trigger the auto-scaling process before the load increases.
	Resource Analysis Process Management System Performance Log Analysis	DevOps	Medium	3 mins	Try practice test
As a senior DevOps engineer, you are tasked with diagnosing performance issues on a Linux server running Ubuntu 20.04. The server hosts several critical applications, but lately, users have been experiencing significant slowness. Initial monitoring shows that CPU and memory utilization are consistently high. To identify the root cause, you check the output of `top` and `ps` commands, which indicate that a particular process is consuming an unusually high amount of resources. However, the process name is generic and does not clearly indicate which application or service it belongs to. You also examine `/var/log/syslog` for any unusual entries but find nothing out of the ordinary. Based on this situation, which of the following steps would most effectively help you identify and resolve the performance issue? A: Increase the server's physical memory and CPU capacity. B: Use the `lsof` command to identify the files opened by the suspect process. C: Reboot the server to reset all processes. D: Examine the `/etc/hosts` file for any incorrect configurations. E: Run the `netstat` command to check for abnormal network activity. F: Check the crontab for any recently added scheduled tasks.
	Streamlined DevOps Continuous Integration Scripting	DevOps	Medium	2 mins	Try practice test
You are in charge of developing a Bash script for setting up a continuous integration pipeline for a web application. The source code is hosted in a Git repository. The script's goals include: 1. Ensuring the local copy of the repository in /var/www/html is updated to the latest version. 2. Creating a .env file with APP_ENV=production in the project root if it doesn't already exist. 3. Running a test suite with ./run_tests.sh and handling any test failures appropriately. 4. Logging the current timestamp and commit hash in deployment_log.txt in the project root if tests pass. Which of the following script options would most effectively and safely accomplish these tasks?
	Docker Multistage Build Analysis Multistage Builds Optimization	Docker	Medium	3 mins	Try practice test
Consider the following Dockerfile, which utilizes multistage builds. The aim is to build a lightweight, optimized image that just runs the application. The Dockerfile first defines a base image that includes Node.js and npm, then it creates an intermediate image to install the npm dependencies. Afterwards, it runs the tests in another stage and finally, creates the release image. Which of the following statements are true? A: The final image will include the test scripts. B: If a test fails, the final image will not be created. C: The node_modules directory in the final image comes from the base image. D: The final image will only contain the necessary application files and dependencies. E: If the application's source code changes, only the release stage needs to be rebuilt.
	Docker Networking and Volume Mounting Interplay Networking Volume Mounting	Docker	Easy	3 mins	Try practice test
You have two docker containers, X and Y. Container X is running a web service listening on port 8080, and container Y is supposed to consume this service. Both containers are created from images that don't have any special network configurations. Container X has a Dockerfile as follows: And, you build and run it with the following commands: Container Y is also running alpine with python installed, and it's supposed to read data from the `/app/data` directory and send a GET request to `http://localhost:8080` every 5 minutes. The Dockerfile for container B is: And you run it with: Assuming all the python scripts work perfectly and firewall isn't blocking any connections, you find that container Y can't access the web service of container X via `http://localhost:8080` and also it can't read the data in `/app/data` directory. What could be the potential reason(s)? A: Y can't access X's web service because they're in different Docker networks. B: Y can't read the data because the volume is not shared correctly. C: Both A and B are correct. D: Both A and B are incorrect.
	Dockerfile Optimization Dockerfile Multi-stage builds Layer Caching	Docker	Medium	2 mins	Try practice test
You have been asked to optimize a Dockerfile for a Python application that involves a heavy dependency installation. Here is the Dockerfile you are starting with: Given that the application's source code changes frequently but the dependencies listed in requirements.txt rarely change, how can you optimize this Dockerfile to take advantage of Docker's layer caching, reducing the build time? A: Move the `RUN pip install` command to before the `COPY` command. B: Change `COPY . /app` to `COPY ./app.py /app` and move the `RUN pip install` command to before the `COPY` command. C: Add `RUN pip cache purge` before `RUN pip install`. D: Replace the base image with `python:3.8-slim`. E: Implement multi-stage builds.
	Dockerfile Updates Cache	Docker	Medium	2 mins	Try practice test
Check the following Dockerfile used for a project (STAGE 1): We created an image from this Dockerfile on Dec 14 2021. A couple of weeks after Dec 14 2021, Ubuntu released new security updates to their repository. After 2 months, we modified the file (STAGE 2): Couple of weeks later, we further modified the file to add a local file ada.txt to /ada.txt (STAGE 3): (Note that ada.txt exists in /home/adaface and the dockerfile exists in /home/code folders) Pick correct statements: A: If we run “docker build .” at STAGE 2, new Ubuntu updates will be fetched because apt-get update will be run again since cache is invalidated for all lines/layers of Dockerfile when a new line is added. B: If we run “docker build .” at STAGE 2, new Ubuntu updates will not be fetched since cache is invalidated only for last two lines of the updated Dockerfile. Since the first two commands remain the same, cached layers are re-used skipping apt get update. C: To skip Cache, “docker build -no-cache .” can be used at STAGE 2. This will ensure new Ubuntu updates are picked up. D: Docker command “docker build .” at STAGE 3 works as expected and adds local file ada.txt to the image. E: Docker command “docker build .” at STAGE 3 gives an error “no such file or directory” since /home/adaface/ada.txt is not part of the Dockerfile context.
	Efficient Dockerfile Dockerfile	Docker	Medium	2 mins	Try practice test
Review the following Dockerfiles that work on two projects (project and project2): All Docker files have the same end result: - ‘project’ is cloned from git. After running few commands, ‘project’ code is removed. - ‘project2’ is copied from file system and permissions to the folder is changed. Pick the correct statements: A: File 1 is the most efficient of all. B: File 2 is the most efficient of all. C: File 3 is the most efficient of all. D: File 4 is the most efficient of all. E: Merging multiple RUN commands into a single RUN command is efficient for ‘project’ since each RUN command creates a new layer with changed files and folders. Deleting files with RUN only marks these files as deleted but does not reclaim disk space. F: Copying ‘project2’ files and changing ownership in two separate commands will result in two layers since Docker duplicates all the files twice.
	ConfigMap and Secrets Interaction Resource Management Security	Kubernetes	Medium	2 mins	Try practice test
In a Kubernetes cluster, you are working on configuring a new deployment that should be able to access specific environment variables through both ConfigMap and Secrets resources. The deployment YAML is structured as follows: You have applied the above YAML successfully without any errors. Now, you are about to configure a service to expose the deployment. Before doing that, you want to confirm the security and setup implications. Based on the above configuration, which of the following statements are true? 1. The DATABASE_PASSWORD will be mounted as an environment variable in plain text. 2. The ConfigMap data can be updated and the changes will be reflected automatically in the running pods without any need for a redeployment. 3. If a potential attacker gains access to the cluster, they would be able to retrieve the DATABASE_PASSWORD in plain text from the secrets resource as it is defined in stringData. 4. The APP_ENV and DATABASE_URL values are securely stored and cannot be accessed by non-admin users. 5. If a new container in the same pod is created, it would automatically have the DATABASE_PASSWORD environment variable configured.
	Ingress from namespace Network Network Policies	Kubernetes	Medium	3 mins	Try practice test
You are tasked with deploying a Kubernetes network policy. Here are the specifications: - Name of the policy: adaface-namespace - Policy to be deployed in ‘chatbot’ namespace - The policy should allow ALL traffic only from ‘tester’ namespace - Policy should not allow communication between pods in the same namespace - Traffic only from ‘tester’ namespace is allowed on all ports Which of the following configuration files is BEST suited to create required dependencies and deploy the network policy?
	Pod Affinity and Resource Quota Compliance Pod Scheduling Resource Management	Kubernetes	Medium	2 mins	Try practice test
You are working on a Kubernetes project where you need to ensure that certain pods get scheduled on nodes based on the presence of other pods and to limit the amount of resources that can be consumed in a namespace. You have been given the following YAML file which contains a combination of a pod definition and a resource quota: With the application of the above YAML configuration, assess the validity of the statements and choose the correct option that lists all the true statements. 1. The critical-pod will only be scheduled on nodes where at least one pod with a label security=high is already running. 2. The critical-pod is adhering to the resource quotas defined in the compute-quota. 3. The compute-quota restricts the namespace to only allow a total of 1 CPU and 1Gi memory in requests and 2 CPUs and 2Gi memory in limits across all pods. 4. If a node has multiple pods labeled with security=high, the critical-pod can potentially be scheduled on that node, given other scheduling constraints are met. 5. The critical-pod exceeds the defined memory request quota as per the compute-quota.
	Resource limits Pods Containers	Kubernetes	Easy	3 mins	Try practice test
How would you deploy a Kubernetes pod with the following specifications: - Name of pod: adaface - Resource limits: 1 CPU and 512Mi memory - Image: haproxy A: kubectl run adaface --image=haproxy --limits='cpu=1,memory=512Mi' B: kubectl run adaface --image=haproxy --requests='cpu=1,memory=512Mi'

Reason #4

1200+ customers in 75 countries

借助 Adaface，我们能够将初步筛选流程优化达 75% 以上，为招聘经理和我们的人才招聘团队节省了宝贵的时间！

Brandon Lee, 人事主管, Love, Bonito

Try practice test

Start 14-day free trial

Reason #5

Designed for elimination, not selection

The most important thing while implementing the pre-employment 站点可靠性测试 in your hiring process is that it is an elimination tool, not a selection tool. In other words: you want to use the test to eliminate the candidates who do poorly on the test, not to select the candidates who come out at the top. While they are super valuable, pre-employment tests do not paint the entire picture of a candidate’s abilities, knowledge, and motivations. Multiple easy questions are more predictive of a candidate's ability than fewer hard questions. Harder questions are often "trick" based questions, which do not provide any meaningful signal about the candidate's skillset.

Science behind Adaface tests

Reason #6

1 click candidate invites

Email invites: You can send candidates an email invite to the 站点可靠性测试 from your dashboard by entering their email address.

Public link: You can create a public link for each test that you can share with candidates.

API or integrations: You can invite candidates directly from your ATS by using our pre-built integrations with popular ATS systems or building a custom integration with your in-house ATS.

Reason #7

Detailed scorecards & benchmarks

查看样本记分卡

Try practice test

Start 14-day free trial

Reason #8

High completion rate

Adaface tests are conversational, low-stress, and take just 25-40 mins to complete.

This is why Adaface has the highest test-completion rate (86%), which is more than 2x better than traditional assessments.

Reason #9

Advanced Proctoring

Learn more

Preview this test

查看样本记分卡

About the Site Reliability Online Test

Why you should use Pre-employment Site Reliability Test?

The 站点可靠性测试 makes use of scenario-based questions to test for on-the-job skills as opposed to theoretical knowledge, ensuring that candidates who do well on this screening test have the relavant skills. The questions are designed to covered following on-the-job aspects:

了解系统设计和建筑原理
熟练基础架构作为代码（IAC）
具有连续集成/连续部署（CI/CD）工具和流程的经验
了解网络概念和协议的知识
熟悉监视和伐木系统
处理事件管理和执行验尸分析的能力
具有性能调整和负载平衡的经验
了解数据库的可靠性和可扩展性
对安全原则和最佳实践的了解
精通灾难恢复计划和执行

Once the test is sent to a candidate, the candidate receives a link in email to take the test. For each candidate, you will receive a detailed report with skills breakdown and benchmarks to shortlist the top candidates from your pool.

What topics are covered in the Site Reliability Test?

基础架构作为代码（IAC）
这项技能评估了候选人在候选人中的熟练程度使用工具和技术通过代码来定义和管理基础架构。通过衡量这项技能，我们可以确保候选人能够自动化基础设施供应并保持配置的一致性，从而提高操作效率并降低手动错误。
连续集成/连续部署（CI/CD）
该技能衡量了候选人对自动化流程进行构建，测试和部署软件的理解和应用。评估这项技能至关重要，因为它使组织能够快速，频繁发布软件，确保对变化进行彻底测试，最大程度地减少潜在的问题并实现更快的上市时间。
了解网络概念< /H4> <p>此技能评估了候选人对网络基本面的了解，包括TCP/IP，DNS，路由和网络协议。衡量这项技能以确保候选人可以设计和故障排除网络配置，优化网络性能以及在系统的不同组件之间实现安全可靠的通信。 <p>此技能评估了候选人实施和利用监视和记录系统的能力，以了解应用程序性能，检测问题并解决问题。衡量此技能有助于确保系统的适当可观察性，促进主动监控，有效的调试以及持续提高基础设施的整体可靠性。</p> <h4>事件管理和验尸管理和验尸分析</h4> <p >该技能可以衡量候选人在处理事件，协调响应工作以及进行验尸分析以识别根本原因并防止复发的知识和经验。评估这项技能至关重要，因为它证明了候选人有效地管理和减轻事件影响，提高系统可靠性并采取必要的纠正措施以避免将来的事件的能力。</p> <h4>绩效调整和负载平衡
此技能评估了候选人在优化系统性能和分配多个资源的工作量方面的专业知识，以确保可扩展性和高可用性。衡量此技能至关重要，因为它使组织能够提供响应迅速的应用程序并处理增加的流量而不会损害性能，从而确保了流畅的用户体验和最少的停机时间。
数据库可靠性和可伸缩性
技能评估候选人对数据库技术的理解，其可靠性和可伸缩性方面。衡量此技能很重要，因为它有助于确保候选人可以设计，监视和优化数据库系统，从而实现有效的数据存储，检索和高可用性，同时保持数据完整性和性能。
了解安全原理
该技能衡量了候选人对安全概念和最佳实践的理解，包括身份验证，授权，加密和脆弱性管理。评估这项技能至关重要，因为它允许组织保护其系统和数据免受未经授权的访问，保持符合监管要求，并保护敏感信息免受潜在威胁和攻击。
微服务和集装箱</h4> </h4> </h4> </h4> < P>该技能评估了候选人在设计和实施微服务体系结构以及使用集装箱技术（例如Docker和Kubernetes）方面的理解和熟练程度。衡量此技能是有价值的，因为它允许组织构建可有效部署和操作的可扩展，脱钩和可管理的系统，从而实现服务的快速发展，部署和可扩展性。</p> <h4>服务级别目标（SLOS）和错误预算
此技能衡量了候选人对定义，跟踪和满足服务水平目标的知识和应用，以及管理错误预算。评估这项技能至关重要，因为它可以帮助组织建立和维持服务的可靠性，对功能开发和基础设施投资做出数据驱动的决策，并优先考虑改善系统性能和可用性的努力。
流量管理和分布式系统< /h4> <p>此技能评估了候选人在分布式系统中多个资源之间有效地管理和分发传入流量的能力。衡量此技能至关重要，因为它使组织能够处理高流量负载，提高系统性能并确保容错性和可扩展性，从而带来更好的用户体验并提高系统可靠性。</p> <h4>高可用性和弹性策略< /h4> <p>此技能评估了候选人的知识和应用策略和技术，以实现高可用性并确保对失败的系统弹性。衡量此技能很重要，因为它使组织能够最大程度地减少停机影响，保持连续的服务可用性，并在面对意外情况或组件失败的情况下提供不间断的用户体验。</p> <h4>容量计划和资源计划优化
该技能衡量了候选人分析系统容量需求，优化资源分配以及计划未来增长的能力。评估这项技能至关重要，因为它使组织能够有效地管理基础设施成本，避免绩效瓶颈或资源短缺，并确保资源的最佳利用，从而导致有效且具有成本效益的运营。
Full list of covered topics
The actual topics of the questions in the final test will depend on your job description and requirements. However, here's a list of topics you can expect the questions for 站点可靠性测试 to be based on.
站点可靠性工程
DevOps方法
Docker
Kubernetes
系统设计
基础架构作为代码
持续集成
连续部署
网络概念
监视系统
记录系统
事件管理
验尸分析
性能调整
负载均衡
数据库可靠性
数据库可伸缩性
安全原则
灾难恢复计划
灾难恢复执行
微服务
容器化
服务水平目标
错误预算
流量管理
分布式系统
高可用性
弹性策略
容量规划
资源优化

Try practice test

Start 14-day free trial

What roles can I use the Site Reliability Test for?

站点可靠性工程师（SRE）
初级站点可靠性工程师
高级站点可靠性工程师

How is the Site Reliability Test customized for senior candidates?

For intermediate/ experienced candidates, we customize the assessment questions to include advanced topics and increase the difficulty level of the questions. This might include adding questions on topics like