GeneralInformation

Hostnames	172-104-158-179.ip.linodeusercontent.com uptime02.slit.dk
Domains	linodeusercontent.com slit.dk
Cloud Provider	Linode
Cloud Region	de-he
Country	Germany
City	Frankfurt am Main
Organization	Linode
ISP	Akamai Connected Cloud
ASN	AS63949

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3001

-1760406823 | 2024-05-06T23:17:38.493441

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFap8Gj1WE+7WlUTMR/M6BDf
jDtDc9Dczbf4BBbEBw6neuQUhANqQ220B8Cg+glCnQGL3SDPE1MxDzSHeVDn2nY=
Fingerprint: 67:b7:1d:e9:ce:e7:3e:05:2e:6b:1c:0d:5d:c6:ea:c1

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-07T00:52:04.026814

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 May 2024 00:52:03 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

2145023436 | 2024-05-06T16:15:36.524856

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 06 May 2024 16:15:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1946
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
ETag: W/"79a-yf0yFUVMYYPB3gvxhw/9zau//z0"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:e4:3d:51:89:2c:86:3f:09:14:39:56:c7:64:75:21:99:c6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 22 05:03:40 2024 GMT
            Not After : Jun 20 05:03:39 2024 GMT
        Subject: CN=172-104-158-179.ip.linodeusercontent.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:be:3d:a5:ec:0c:9f:89:32:af:52:75:3b:c2:6d:
                    d2:33:53:19:4d:0f:8f:11:ab:59:33:68:ef:bd:e0:
                    c3:51:6c:8a:dc:94:72:1a:0a:3e:4c:25:e6:3b:6a:
                    41:cf:ed:94:88:b6:79:94:ad:da:ba:cf:56:66:75:
                    b5:25:19:7a:80:d1:40:d0:a9:a4:b0:f4:c0:85:45:
                    34:0b:5e:a3:ae:c5:80:82:0b:cb:cb:6f:f5:a5:0b:
                    34:e0:b0:a5:86:3f:2b:cf:fc:d6:e9:4a:7d:b4:a7:
                    79:b3:93:d7:62:e4:08:28:54:50:82:97:d8:f7:17:
                    41:07:1f:f6:50:41:9e:11:e3:20:f6:22:7e:82:e2:
                    55:f4:ff:14:96:04:9a:b6:15:3b:d7:e9:39:07:69:
                    9f:75:88:d6:98:4d:de:f2:84:25:f8:e9:1b:bc:04:
                    33:52:1b:17:0b:b6:34:73:6b:b9:48:ab:ea:23:73:
                    73:cb:ea:4f:05:95:d5:79:5c:61:ea:cb:6d:36:ac:
                    1a:5a:39:67:df:62:d1:47:d5:c6:f4:27:c2:78:e9:
                    f1:87:b6:8c:88:45:46:6e:16:80:c8:8c:27:3d:d7:
                    68:1e:9f:ff:0f:0f:3a:2e:66:ae:26:b6:06:f0:c4:
                    ef:58:36:43:99:fd:f9:5e:27:a9:b2:73:28:c8:e8:
                    36:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                ED:AC:2F:66:26:4D:A9:69:C3:FB:8B:58:B0:D1:05:EA:2B:33:17:C9
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:172-104-158-179.ip.linodeusercontent.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 22 06:03:41.032 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:34:57:27:C0:EF:99:94:03:82:62:19:A8:
                                CE:0C:E3:0A:6C:05:54:00:CF:AB:7D:D7:47:34:B5:88:
                                4E:1F:6A:0A:02:21:00:D5:D7:06:C7:63:D1:2E:D2:D6:
                                37:03:82:95:21:1F:19:9E:B1:F0:70:B4:99:85:B4:3E:
                                E8:A3:1D:2A:C6:65:12
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 22 06:03:42.972 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AF:21:E0:92:B4:65:D0:9B:B5:45:23:
                                ED:76:38:4E:EE:AE:F8:E0:B7:4E:AC:97:5F:66:3B:20:
                                66:A4:21:87:78:02:21:00:93:67:6F:F2:9D:4F:88:ED:
                                16:58:7A:CE:16:52:6C:89:90:4B:24:94:A1:35:2C:05:
                                46:DA:8A:7D:F8:B6:57:E6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        24:4f:0d:06:1b:36:06:7e:06:18:ae:bf:b4:1d:a8:22:6f:bf:
        6f:b9:a0:18:0e:ce:4e:6a:6a:4b:9d:cf:99:f3:98:5c:92:6f:
        84:78:27:23:95:f8:d9:90:0e:e2:12:aa:00:3e:5c:74:94:66:
        3a:79:56:5a:fa:44:01:47:63:36:ea:ef:67:96:25:39:da:35:
        ce:b5:a0:93:2b:f5:36:9c:6a:62:e1:05:d0:af:18:90:a5:02:
        44:fd:f7:fc:7b:d8:1a:01:aa:39:84:40:08:dd:76:c5:48:05:
        a0:3f:ab:ba:15:42:ff:6e:ca:ea:55:90:02:53:07:08:21:8e:
        6a:c2:eb:68:a4:e4:50:9c:b3:47:d4:87:40:d3:d1:1e:5e:e4:
        0e:76:d0:71:d5:d5:c8:43:4f:2c:73:04:7a:5d:3b:7d:01:89:
        06:2e:b4:4c:a9:f2:39:75:07:1f:49:3c:52:d5:c8:91:a2:61:
        20:6d:fc:1b:23:8a:4f:71:56:ca:f7:00:36:b3:6f:7c:97:8c:
        cb:00:61:c3:be:0e:5d:9f:15:61:6f:6a:09:8a:a7:8b:35:64:
        a5:c4:03:40:47:91:d9:53:58:50:46:85:4a:31:c7:43:28:95:
        c0:f4:f1:9a:0a:a3:1e:19:e7:54:8b:9c:1b:2c:ed:8f:b8:cd:
        ab:87:86:92

-1764342041 | 2024-05-07T01:21:32.173975

3001 / tcp

HTTP/1.1 302 Found
X-Frame-Options: SAMEORIGIN
Location: /dashboard
Vary: Accept
Content-Type: text/plain; charset=utf-8
Content-Length: 32
Date: Tue, 07 May 2024 01:21:32 GMT
Connection: keep-alive
Keep-Alive: timeout=5

Found. Redirecting to /dashboard

172.104.158.179

Last Seen: 2024-05-07

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1760406823 | 2024-05-06T23:17:38.493441
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-05-07T00:52:04.026814
80 / tcp

nginx1.18.0

2145023436 | 2024-05-06T16:15:36.524856
443 / tcp

nginx1.18.0

-1764342041 | 2024-05-07T01:21:32.173975
3001 / tcp

Products

Pricing

Contact Us

172.104.158.179

Last Seen: 2024-05-07

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1760406823 | 2024-05-06T23:17:38.493441 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-05-07T00:52:04.026814 80 / tcp

nginx1.18.0

2145023436 | 2024-05-06T16:15:36.524856 443 / tcp

nginx1.18.0

-1764342041 | 2024-05-07T01:21:32.173975 3001 / tcp

Products

Pricing

Contact Us

-1760406823 | 2024-05-06T23:17:38.493441
22 / tcp

677579724 | 2024-05-07T00:52:04.026814
80 / tcp

2145023436 | 2024-05-06T16:15:36.524856
443 / tcp

-1764342041 | 2024-05-07T01:21:32.173975
3001 / tcp