298021461 | 2024-05-05T11:27:04.046460
22 /
tcp
SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDKQF4OlPg4iQFZyqe2S7us69DUn3doo3dFv7rBcd284SI2
3ho4bhbLtU1/CO6N7GUbLqlpGhL2JyLOfMe9Q7bD9p1zIp1quxiAK7Ig2hIwr0PQTKZXxux2BGrq
vwpLu10D6lGxaXF4gG+kCulVZ76Ag/tGUbrWrRcn3s8MyA/jso3p6pWBgM0gadaBpNFr1xiqgnYF
ovMThoTHuGM0ew7K/x4I6oIn6D8QCowiuJRNS8o5q9a8Sao+Q7cYzlCMoN7jVInfCWEadgQSw9OE
+/yr1NwzsQWlGZpzK6OpGsyD3KpOrmj5R62Et/sVBor9bCx/3hybG/DF/vGCMHNefsGN
Fingerprint: a6:12:c7:7f:61:f3:29:13:b8:2b:6d:e9:4c:24:b2:91
Kex Algorithms:
curve25519-sha256
curve25519-sha256@libssh.org
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
diffie-hellman-group-exchange-sha256
diffie-hellman-group16-sha512
diffie-hellman-group18-sha512
diffie-hellman-group14-sha256
kex-strict-s-v00@openssh.com
Server Host Key Algorithms:
rsa-sha2-512
rsa-sha2-256
ssh-rsa
ecdsa-sha2-nistp256
ssh-ed25519
Encryption Algorithms:
chacha20-poly1305@openssh.com
aes128-ctr
aes192-ctr
aes256-ctr
aes128-gcm@openssh.com
aes256-gcm@openssh.com
MAC Algorithms:
umac-64-etm@openssh.com
umac-128-etm@openssh.com
hmac-sha2-256-etm@openssh.com
hmac-sha2-512-etm@openssh.com
hmac-sha1-etm@openssh.com
umac-64@openssh.com
umac-128@openssh.com
hmac-sha2-256
hmac-sha2-512
hmac-sha1
Compression Algorithms:
none
zlib@openssh.com
1220894378 | 2024-05-02T20:20:05.221623
25 /
tcp
220 elastic4.symptoma.com ESMTP Postfix (Debian/GNU)
250-elastic4.symptoma.com
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250-SMTPUTF8
250 CHUNKING
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
fb:70:03:83:e8:37:c4:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=elastic4.symptoma.com
Validity
Not Before: Jun 14 09:51:21 2019 GMT
Not After : Jun 11 09:51:21 2029 GMT
Subject: CN=elastic4.symptoma.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c0:c1:f1:6b:92:f6:ff:a8:66:f9:a7:41:ab:f1:
19:bc:9e:8f:57:fc:40:ba:22:f8:16:aa:15:19:8a:
cb:85:e4:b7:69:1d:06:77:84:7a:2b:29:f0:72:7b:
69:fc:e4:82:d2:a7:08:dd:cf:31:05:02:ab:1f:11:
69:64:cc:e8:f5:29:b9:57:a4:7b:6d:2a:e4:d2:00:
01:b0:4f:ab:16:28:a9:23:27:95:ce:5d:7e:e1:81:
ee:84:97:91:1c:35:bb:14:e8:fb:c7:46:3d:fa:05:
77:0c:1e:de:86:ab:b2:77:62:9b:6b:25:37:ba:de:
b9:4b:52:6e:10:8c:37:4a:16:9d:4a:56:e3:95:2c:
d9:b1:55:7a:72:3c:0f:06:c2:14:64:a8:7b:98:f1:
9b:dc:8c:f3:77:73:46:37:13:18:6d:80:90:92:a3:
03:2f:5d:c3:05:4e:36:a2:74:f0:d0:6f:f3:dd:69:
fe:22:45:98:39:16:57:4a:5d:bb:7b:0c:ae:73:26:
32:7d:c1:85:b3:83:95:dc:b8:c5:3b:26:b4:72:48:
f6:21:0b:7d:03:b6:b9:eb:28:29:dc:37:fa:2d:64:
03:d1:7c:be:1d:d1:a7:5b:18:91:6a:92:42:b7:d1:
81:a8:9b:a5:0b:5a:a3:05:ff:c3:e8:85:b6:7a:46:
10:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
X509v3 Subject Alternative Name:
DNS:elastic4.symptoma.com
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
43:45:17:b2:4c:e2:dc:c3:db:e7:98:66:97:83:23:38:97:fe:
4b:79:83:c1:9a:cf:6e:e3:55:32:b4:c3:1d:ec:c0:ca:3d:27:
a8:5e:94:e3:62:8a:3d:82:d0:8e:82:22:c8:26:6a:64:02:53:
1b:60:87:3e:bd:2b:fc:2c:67:c4:2d:a3:80:dc:62:e4:11:4d:
79:d4:a9:32:66:5c:9f:55:f0:d2:b2:9b:ce:c5:3e:cf:6f:20:
69:56:57:54:9b:bc:84:8d:fb:2a:0d:12:56:91:41:e0:b7:b6:
fb:4d:bd:02:3c:41:a0:dc:46:a9:ef:da:fc:3e:8b:b7:f2:d0:
44:3c:41:6c:0a:57:1a:96:7b:5e:23:b8:74:8b:7b:a0:f5:30:
18:bd:cb:ce:54:0c:37:34:25:f1:1f:1c:f0:b4:53:f9:e1:84:
49:40:8a:2c:ba:a9:4b:2f:aa:3a:b9:c7:6c:55:31:5c:9f:09:
b3:39:b2:ff:ac:72:1e:b3:24:05:d3:a6:5b:29:0e:ed:f0:ea:
16:1c:b9:ce:5f:09:fe:72:99:99:b7:4c:b3:88:17:64:11:63:
c4:e7:41:03:12:e8:05:5f:13:00:cf:c1:b3:d4:25:33:60:92:
c5:9d:21:92:ac:5a:41:7c:29:8c:85:2a:4e:1f:7a:9c:69:45:
83:b2:fb:b5
-1903636498 | 2024-05-01T20:06:07.961795
80 /
tcp
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 01 May 2024 20:06:07 GMT
Content-Type: text/html
Content-Length: 225132
Last-Modified: Thu, 13 Dec 2018 14:28:05 GMT
Connection: keep-alive
ETag: "5c126c75-36f6c"
Accept-Ranges: bytes
-1196936736 | 2024-04-30T21:52:11.328480
443 /
tcp
HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0
Date: Tue, 30 Apr 2024 21:52:11 GMT
Content-Type: text/html
Content-Length: 581
Connection: keep-alive
WWW-Authenticate: Basic realm="Protected Elasticsearch"
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:7c:b7:e0:2e:14:61:55:33:41:87:00:0e:10:d8:bb:3b:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Mar 22 20:44:11 2024 GMT
Not After : Jun 20 20:44:10 2024 GMT
Subject: CN=elastic4-cluster.symptoma.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b3:40:34:6f:b0:29:11:db:d0:27:dc:2f:a3:37:
3f:18:86:89:64:49:f2:1d:a4:8b:5c:d2:72:13:fa:
64:a7:4c:3c:14:59:db:e0:85:bd:30:b7:ee:c3:66:
f6:96:20:a4:51:7d:20:e2:72:87:4a:bf:e3:58:0b:
4a:2c:6c:a2:05:53:47:4c:1e:28:bf:4f:36:e6:fa:
b2:1b:8f:e8:f1:0b:b6:ed:32:b5:1b:56:b2:af:c4:
08:4e:97:35:47:da:de:bc:2f:f5:5d:fb:08:40:75:
e9:84:8f:b6:56:bb:bb:14:9b:3d:15:dd:1d:2e:ae:
c4:ad:24:a8:16:0b:1b:de:f3:68:3a:e9:40:6e:38:
f8:a1:c3:12:cc:63:bc:c2:8e:c3:6f:fe:20:88:87:
b4:b5:1e:6b:8f:62:90:4b:49:8f:0c:31:e1:a9:50:
00:57:a3:93:c9:89:1b:31:84:ed:18:55:5f:af:54:
58:76:c2:ee:2c:37:00:42:1a:ba:36:9b:90:d3:54:
8b:c7:28:0b:50:c5:18:a7:35:0d:13:fa:c5:ae:a7:
c5:fc:5c:7f:a5:7f:fd:8e:8f:0c:8f:f0:cb:60:72:
71:3e:aa:5e:f7:9d:13:15:c6:19:6f:fd:b0:ac:e2:
f3:1c:59:51:58:76:76:95:e2:08:68:72:f9:66:01:
9f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
F9:8A:FC:E5:10:B5:38:9C:AA:29:88:3A:D9:B9:AD:89:97:37:D5:86
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:elastic4-cluster.symptoma.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Mar 22 21:44:12.066 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:5F:44:C2:DC:9A:64:54:FD:E6:36:F7:DF:
0D:EB:00:A0:BD:99:C0:E8:17:F6:2D:5A:39:C6:63:9E:
55:55:12:BF:02:21:00:BB:AC:50:9A:87:77:5D:84:06:
67:B2:53:28:5C:AF:98:08:4D:0F:99:B0:9C:43:A8:92:
C7:E3:55:AF:FB:AE:56
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
Timestamp : Mar 22 21:44:14.120 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:B6:F6:E7:2A:72:09:98:DE:3E:BA:CF:
E5:91:63:5E:6A:86:8D:72:22:D0:B0:C6:30:19:E4:AB:
1E:89:E4:58:C9:02:20:5E:C4:9B:DD:EB:11:2A:44:D8:
D0:DB:D2:68:1A:83:5E:92:56:CC:EB:71:AD:AF:2D:D0:
0C:24:48:DF:1F:3F:A8
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
9c:67:3f:7a:5d:03:cb:1f:d4:b0:d0:d6:51:c7:87:ed:e2:73:
0e:a7:4c:cf:2f:b3:19:43:ad:67:20:4b:ea:af:a4:52:52:3f:
8f:56:e0:27:88:62:0d:9f:16:b0:51:54:9d:5f:73:b9:66:9f:
d9:41:0d:b4:53:51:34:a9:13:cf:4d:be:a3:74:6a:76:f2:e0:
e8:09:7a:e8:f3:23:e7:ec:e9:98:45:2f:dd:3c:31:60:8e:f1:
72:c6:49:11:b4:13:89:86:36:a6:61:62:3d:d2:91:5f:b2:83:
a8:1c:cd:93:ed:9b:db:82:47:fb:6b:b5:5c:f8:98:a7:aa:d2:
e0:a2:5a:b7:3c:8c:04:46:7b:85:45:1a:f8:52:5b:11:b2:e1:
88:1b:18:44:b0:07:62:87:f0:3b:b3:81:9e:52:e9:a8:fd:bd:
29:a0:34:78:29:68:fe:a6:2f:68:32:e5:3d:85:bf:91:84:d7:
ee:d8:b9:7e:fc:62:25:97:e7:5d:0a:30:b3:99:53:e6:18:d1:
c7:3b:83:59:f0:0e:cc:5f:14:be:2b:c8:bb:02:e2:5a:54:6f:
15:93:44:d7:aa:c3:3c:cb:43:d8:52:0e:1b:d1:a2:8d:a5:ba:
1a:2a:a0:28:ab:76:ea:f6:66:d9:6f:b7:c7:4c:5b:09:b1:b9:
71:45:72:92
-862806525 | 2024-04-25T05:42:54.397676
9100 /
tcp
HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close
400 Bad Request
Prometheus Node Exporter:
node_exporter_build_info:
branch: debian/sid
goversion: go1.15.9
revision: 1.1.2+ds-2.1
version: 1.1.2+ds
node_uname_info:
domainname: (none)
machine: x86_64
nodename: elastic4.symptoma.com
release: 5.10.0-26-amd64
sysname: Linux
version: #1 SMP Debian 5.10.197-1 (2023-09-29)
node_network_info:
elasticnet:
device: elasticnet
duplex: full
operstate: unknown
lo:
address: 00:00:00:00:00:00
broadcast: 00:00:00:00:00:00
device: lo
operstate: unknown
enp27s0:
address: 30:9c:23:02:78:cd
broadcast: ff:ff:ff:ff:ff:ff
device: enp27s0
duplex: full
operstate: up