GeneralInformation

Hostnames	www.lbfamily.ca
Domains	lbfamily.ca
Cloud Provider	DigitalOcean
Cloud Region	ca-on
Country	Canada
City	Toronto
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

22 443

1497319398 | 2024-04-10T00:49:04.829419

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDGHq4LnjUgOuvNvLG/xXSWGDvb+Zp39z1+Bf0YXiEbWeG5
BB3uxbsPiK6dpJO722jpJh08gO/SUJ4R8Fq2tFkFgT4h5nl1GqYkB261uXkU4vMfZt9t4dyhhlj/
gEdSHEsxcqadJljUJaQJn+IyCmoA1l4ovqraLr0PEDLf9BWmRyX1tErK6Vi9wzoKCxq5q8mQLpHD
xOphAI+CFtpsz7qkYHVhKBfA2qLmoGVQI65BsyTLBZ9K/p60a6l+ois+5PFpETewEesT4f95jyQv
FV88wCi5C5mz+kjZDNIKptd2IDWYZeDb0rpDX8oqyd0/b056jY1KBuwSk6tJ8PAD+Cvd
Fingerprint: 74:db:e3:c0:5d:d6:79:d2:6d:63:84:22:b5:97:48:89

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1009117370 | 2024-04-03T16:06:13.738914

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 03 Apr 2024 16:06:13 GMT
Content-Type: text/html
Content-Length: 557
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2020 05:43:20 GMT
ETag: "5e268f78-22d"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:2f:fb:53:aa:16:72:6f:f4:19:76:53:b3:9c:7d:b5:b5:e1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 27 22:39:06 2024 GMT
            Not After : May 27 22:39:05 2024 GMT
        Subject: CN=www.lbfamily.ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:e3:57:a2:22:be:8d:10:9a:c2:db:43:52:5b:e7:
                    2b:92:e1:f5:d2:97:a5:3a:a9:ed:01:8f:50:c0:b0:
                    0b:b2:8e:98:06:3c:5b:37:82:2d:d9:2e:e4:97:49:
                    cc:40:77:02:28:ec:e8:f9:cd:4c:9a:f5:49:cd:b7:
                    2c:d9:fb:1b:f7:c3:b4:97:f9:7c:3c:14:88:15:ff:
                    4d:a9:28:a4:a3:53:db:ff:ce:82:ef:f5:26:ce:44:
                    1e:c2:06:56:70:93:ed:10:d7:90:9a:9a:c9:bf:d5:
                    fd:e6:77:5c:32:34:d3:17:b1:3d:6c:af:62:9b:9a:
                    5d:91:df:db:12:28:7e:33:e5:00:60:d2:46:a1:bb:
                    cc:70:00:d1:d5:db:23:76:9c:51:70:69:11:70:39:
                    fb:16:66:82:51:a5:80:c3:05:a3:04:e5:6e:4d:a1:
                    11:04:85:54:e1:95:70:cb:a8:a6:da:a1:db:09:c4:
                    8a:5f:67:9a:5b:ea:cd:ca:78:fb:01:59:58:93:72:
                    01:21:0e:69:f2:d5:ff:fc:53:78:5e:7f:6c:31:4b:
                    d2:9b:ee:cd:84:9b:9b:83:04:7f:ca:eb:9c:72:ed:
                    b7:3e:d7:42:07:e6:c7:c4:f4:52:9f:28:f0:43:cd:
                    cb:c0:f3:5e:b3:69:08:66:cc:1b:8e:3e:1a:4b:55:
                    3a:3f:e1:8d:b0:f7:6b:63:1f:2a:62:5c:74:3c:64:
                    b4:6b:24:30:7b:24:86:8e:26:08:88:ca:89:86:82:
                    8f:f9:9e:c1:1e:42:08:47:e2:7c:b7:46:9d:bd:b7:
                    48:9f:81:2f:9c:e3:d4:b9:84:92:ab:cf:a2:a5:7f:
                    0e:58:2a:6f:2c:d7:5c:7f:15:28:2f:ba:aa:32:a7:
                    8b:2a:ed:b7:1b:58:af:a5:25:36:33:5e:d1:e3:a2:
                    cb:05:15:cd:53:9f:c6:6c:5e:1c:ab:08:56:32:2a:
                    c6:c8:d1:ec:ae:23:83:50:4a:43:fd:c8:38:e1:35:
                    69:d0:33:9b:5b:ae:97:15:e4:10:91:38:cb:d7:b8:
                    2b:9f:0f:93:74:d4:5a:98:ff:55:4d:76:18:3b:83:
                    c8:b3:e2:ce:83:db:d5:67:3e:c0:c4:c4:8a:64:20:
                    9f:a9:26:fc:4d:0a:cc:65:55:84:21:14:c9:66:81:
                    c5:51:15:e5:3d:2e:bb:d3:a0:20:31:83:1d:94:21:
                    00:f4:6e:8f:8d:cd:4d:95:00:c2:8a:d1:05:07:25:
                    3f:3d:de:84:5c:52:95:94:65:ff:1d:28:4a:1c:06:
                    9e:23:66:51:25:12:88:16:15:06:4d:19:32:b7:63:
                    fc:a4:0e:49:e5:fc:56:ea:ad:64:bd:02:29:9c:9b:
                    dc:b4:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                9C:FA:60:48:F6:CC:AB:99:22:4B:65:6F:42:50:73:79:65:0E:6C:98
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:www.lbfamily.ca
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 27 23:39:06.975 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:68:75:86:47:39:A0:2E:D8:1C:A7:F6:BA:
                                D4:EF:35:20:13:D9:D3:CF:85:07:73:09:BE:3D:0E:48:
                                8B:97:69:37:02:20:69:3C:2F:AA:F1:B3:5B:1F:92:99:
                                B2:F6:EF:F5:84:6B:28:AA:A4:C9:C4:A3:38:F1:B0:DF:
                                47:09:D2:F4:85:06
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 27 23:39:06.981 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:48:A0:CD:11:F2:1E:6D:17:4C:9E:AC:62:
                                BA:F2:60:1C:45:E4:AF:6A:58:05:14:82:BC:7C:58:10:
                                20:C5:3F:D5:02:21:00:BE:89:08:18:42:A9:C7:3D:67:
                                65:4B:3B:92:6D:87:8F:D3:6B:51:7B:0B:B0:96:50:1A:
                                45:50:8E:04:A7:76:F6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        39:24:56:7e:9e:31:8c:63:a5:f3:40:c8:0b:97:ef:44:90:b1:
        49:cc:ab:29:d8:ee:5b:5b:16:a4:79:cb:73:cf:c5:52:f0:dd:
        89:9b:be:f9:47:97:2b:84:64:f8:ca:8c:f9:bb:0e:88:7e:a2:
        a1:22:ec:36:9b:c0:82:8f:36:33:60:dd:32:8e:b2:46:19:ee:
        33:fe:bd:01:11:5f:f5:89:34:9f:e9:d2:ff:8b:9e:e7:e7:96:
        03:e0:f8:33:7d:fc:0b:67:67:5d:c1:f0:49:bb:fd:5b:9c:0f:
        b0:7d:d6:e1:1e:ed:d9:04:0d:b4:b9:bb:83:76:4c:5a:cf:c9:
        09:5d:0f:ab:c5:fe:3d:80:d5:78:24:fb:56:d9:38:51:fa:f1:
        eb:3a:88:98:9c:13:74:8e:09:b0:93:41:49:01:ff:65:3e:a0:
        ac:e2:43:20:5f:7c:ce:6f:df:61:53:a7:af:e4:4d:b0:39:22:
        33:d4:70:27:bf:65:e2:e3:ed:ce:ce:bd:fc:0a:57:91:0e:b2:
        28:90:ef:cb:f4:c4:95:04:77:3a:0c:8e:20:d2:f2:5e:ca:79:
        c7:0b:27:4d:e8:eb:89:d1:2d:5d:b2:39:b3:b0:e8:de:80:86:
        07:c8:e2:69:6f:8f:74:77:3d:47:e3:5d:50:e9:4d:14:8a:de:
        bb:c8:de:e9

167.99.189.117

Last Seen: 2024-04-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1497319398 | 2024-04-10T00:49:04.829419
22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.5

1009117370 | 2024-04-03T16:06:13.738914
443 / tcp

nginx1.17.6

Products

Pricing

Contact Us

167.99.189.117

Last Seen: 2024-04-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1497319398 | 2024-04-10T00:49:04.829419 22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.5

1009117370 | 2024-04-03T16:06:13.738914 443 / tcp

nginx1.17.6

Products

Pricing

Contact Us

1497319398 | 2024-04-10T00:49:04.829419
22 / tcp

1009117370 | 2024-04-03T16:06:13.738914
443 / tcp