GeneralInformation

Hostnames	salakk.online static.128.90.108.65.clients.your-server.de
Domains	salakk.online your-server.de
Country	Finland
City	Helsinki
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

WebTechnologies

CDN

PaaS

Reverse proxies

Security

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 4000 6379

1831236904 | 2024-05-03T18:32:28.420549

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCfbD8hktCZbAsvgUjl6B3AZUihgFHRDgZq+0zdpwR8KCaz
lasFlPglBs+0JfLo93cIVpee6kOXVAxDEzKhPX/f2njzmm6X0dhm+PdsAMpGEc3/nuwF23w+Sa75
LwkTdG62GU7YGBcpRr/4Vn13oL48qK4n3g+xwjXskcDsUjKwmCGcYo8K0uiGf/kNTGyMk/j/yQWk
0gSnrAUchsxknUVeS4tBObPU6KHlzGNrho84hL6P1h5qKSE8IA8DJpqSwMyre0krEsfj1BztuLVs
B0DE1Kcj18PfzwodanJ8CTsqdK1C7OpDm++qh65+8cCTOPbiuZM76dL9/LtuO8pTlKGOV3xwk9G4
hjNePyzqCVngsv10npO2T/9SQnJ/temZ9UTbGZbEpreDdmLu/VDgr/fYzkfM4dHpKMZp2GwioT8p
LUQBR52vg/oIKz/V+Jlyj2edQadqB6YjWvgfjm3RQqzvKKWickDcfu88kRd1PePb4q32N4TChaYd
ceeusGF8Z/M=
Fingerprint: e7:a6:69:6f:84:f1:fd:26:3f:67:5d:a7:a2:58:16:ce

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-08T16:43:00.518359

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 16:43:00 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://65.108.90.128/

184219410 | 2024-05-08T16:43:03.253605

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 16:43:03 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 213
Connection: keep-alive
x-trace: jVs6G9diy
x-envoy-upstream-service-time: 3
x-cache: Hit from cloudfront
via: 1.1 bebaf9a83d825f873f9b24846f10aed0.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P3
x-amz-cf-id: bE_dTlmlX6FjFa9-wzRvgfToFZUsMdynKG6z3zOGeUyfC38Qyf-LHQ==
age: 89
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:ac:0d:ed:ec:41:c4:65:3f:94:1c:ca:70:5b:3d:df:07:c1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  4 10:05:42 2024 GMT
            Not After : Jul  3 10:05:41 2024 GMT
        Subject: CN=salakk.online
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c7:31:27:b2:f2:a4:c3:2e:bd:9c:77:75:7a:13:
                    e3:64:ec:1f:aa:12:28:dd:10:cc:27:c0:f0:0d:38:
                    14:11:68:b7:3b:88:4a:68:4c:ae:bc:a1:35:30:3a:
                    54:93:2f:75:d6:3e:d2:1e:97:0f:d2:4e:0b:97:ef:
                    1b:93:74:ef:f9:3f:d6:2a:d8:fd:0b:a4:58:e1:9a:
                    2d:99:db:45:88:ad:da:f5:7a:bd:65:b0:58:e9:cd:
                    cb:53:c5:87:fe:5e:09:65:ec:59:28:ab:8b:07:b5:
                    8d:4b:54:47:aa:3a:6a:99:dd:2f:86:14:59:9a:b8:
                    1b:46:c6:63:c8:fb:c7:dd:56:8a:10:22:b5:aa:1a:
                    91:24:93:67:26:0f:4e:3a:c2:1b:b0:54:9c:4b:55:
                    3a:25:b3:38:fd:7a:ff:42:b6:70:f5:6a:25:b8:12:
                    06:66:11:b9:03:e6:0c:38:63:01:4a:c8:af:0c:f3:
                    2e:40:a7:08:b0:2c:2a:9f:3c:41:b3:e5:af:73:a3:
                    87:a9:c3:58:ed:0d:a2:0a:5e:6f:a0:18:10:6c:23:
                    2c:fa:b6:a5:31:72:00:e8:cc:27:c7:c5:69:8c:e2:
                    71:6b:5b:89:cc:ee:67:42:2a:1c:cb:fd:58:a7:16:
                    fc:50:27:30:5a:84:42:c3:c9:f6:4e:b0:0c:c1:24:
                    e0:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B9:40:AB:2F:06:74:D1:A1:5B:51:5B:85:19:51:5D:D6:F3:D3:1E:04
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.salakk.online, DNS:salakk.online
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  4 11:05:43.224 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:95:2C:F6:3F:91:92:FC:BA:0F:86:FE:
                                9F:4C:B6:3D:86:41:AE:E5:51:B8:3D:07:26:97:1E:83:
                                42:79:8E:97:B4:02:21:00:D0:FB:A2:84:00:08:A1:00:
                                A8:08:40:DD:0F:BE:D2:F8:BC:AA:22:6A:D7:0E:C5:19:
                                2D:34:86:8D:A5:B1:E2:67
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr  4 11:05:43.277 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8A:72:26:65:C1:52:D4:29:43:8C:11:
                                8D:CA:F1:56:DC:ED:44:7C:09:C7:80:93:3C:74:DA:FF:
                                0F:38:E4:F5:F9:02:20:06:AD:5D:64:5C:61:E7:9C:71:
                                EF:F5:B3:C4:63:82:C8:15:6D:18:36:4D:D6:85:2B:40:
                                67:C0:48:BE:1A:DA:10
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        98:47:a4:92:f3:91:e5:9b:f2:5b:d6:6e:65:aa:24:d4:2d:66:
        cc:28:29:af:dd:cb:6c:36:11:20:c8:15:09:a4:b0:91:9d:5e:
        40:27:34:9c:55:27:ac:f8:27:bb:81:d6:02:d7:de:56:7a:66:
        f7:e2:5b:7a:d6:69:dc:1b:fb:0f:76:bd:28:bb:2f:ef:7e:85:
        c2:bc:5f:90:10:bc:07:60:63:c9:bc:79:53:c4:ab:78:a2:42:
        7f:7e:3e:20:c4:de:52:27:f0:64:94:b8:95:e6:ff:7b:62:df:
        d6:78:9e:52:ba:a2:a9:5f:f5:f6:21:ee:89:a5:62:d3:5d:d0:
        93:52:ed:2f:b7:26:fe:61:33:0b:2b:59:84:c3:ce:8b:19:f8:
        74:ad:06:7c:79:d0:05:69:4c:c1:e3:de:6f:8e:ac:33:20:fa:
        26:b4:df:52:f6:fc:19:16:46:78:43:f5:0d:40:6f:5d:78:e4:
        f9:8d:1c:44:71:01:b2:c9:b8:73:8f:3c:3f:61:53:f3:29:f9:
        0f:5f:f9:ca:55:c5:a9:17:1b:96:54:03:45:01:c0:14:be:62:
        65:2c:37:0e:84:ae:33:a3:14:67:91:c0:f5:f9:eb:fa:9b:50:
        e4:bc:82:78:c2:a8:50:2e:c7:02:b7:93:87:44:5b:fe:2d:71:
        06:34:e6:3d

-1596115530 | 2024-04-30T15:51:30.496538

3000 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=utf-8
content-length: 213
date: Tue, 30 Apr 2024 15:50:41 GMT
x-trace: q1jn7CEZxG
server: envoy
x-envoy-upstream-service-time: 28
x-cache: Hit from cloudfront
via: 1.1 b68db10d1b23df1f9473588b646c9518.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P3
x-amz-cf-id: NFNK_rCfNEq9BNFONiJ5mEeZuSbkUrVI1qhvEhhR2fT9_FDarYudUw==
age: 49
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

-1246004407 | 2024-05-07T19:57:07.301011

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-1622095144 | 2024-05-03T01:01:14.967876

6379 / tcp

# Server
redis_version:7.2.4
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:7c3cbaf27e881543
redis_mode:standalone
os:Linux 5.4.0-156-generic x86_64
arch_bits:64
monotonic_clock:POSIX clock_gettime
multiplexing_api:epoll
atomicvar_api:c11-builtin
gcc_version:12.2.0
process_id:1
process_supervised:no
run_id:26425bfe0bb8447f3b810ef71b9de6b415aba659
tcp_port:6379
server_time_usec:1714698074587189
uptime_in_seconds:485572
uptime_in_days:5
hz:10
configured_hz:10
lru_clock:3422042
executable:/data/redis-server
config_file:
io_threads_active:0
listener0:name=tcp,bind=*,bind=-::*,port=6379

# Clients
connected_clients:3
cluster_connections:0
maxclients:10000
client_recent_max_input_buffer:8
client_recent_max_output_buffer:0
blocked_clients:0
tracking_clients:0
clients_in_timeout_table:0
total_blocking_keys:0
total_blocking_keys_on_nokey:0

# Memory
used_memory:1774032
used_memory_human:1.69M
used_memory_rss:6332416
used_memory_rss_human:6.04M
used_memory_peak:23287056
used_memory_peak_human:22.21M
used_memory_peak_perc:7.62%
used_memory_overhead:898368
used_memory_startup:865864
used_memory_dataset:875664
used_memory_dataset_perc:96.42%
allocator_allocated:2068808
allocator_active:2883584
allocator_resident:6008832
total_system_memory:4009201664
total_system_memory_human:3.73G
used_memory_lua:53248
used_memory_vm_eval:53248
used_memory_lua_human:52.00K
used_memory_scripts_eval:12880
number_of_cached_scripts:6
number_of_functions:0
number_of_libraries:0
used_memory_vm_functions:32768
used_memory_vm_total:86016
used_memory_vm_total_human:84.00K
used_memory_functions:184
used_memory_scripts:13064
used_memory_scripts_human:12.76K
maxmemory:268435456
maxmemory_human:256.00M
maxmemory_policy:allkeys-lru
allocator_frag_ratio:1.39
allocator_frag_bytes:814776
allocator_rss_ratio:2.08
allocator_rss_bytes:3125248
rss_overhead_ratio:1.05
rss_overhead_bytes:323584
mem_fragmentation_ratio:3.65
mem_fragmentation_bytes:4598432
mem_not_counted_for_evict:0
mem_replication_backlog:0
mem_total_replication_buffers:0
mem_clients_slaves:0
mem_clients_normal:3856
mem_cluster_links:0
mem_aof_buffer:0
mem_allocator:jemalloc-5.3.0
active_defrag_running:0
lazyfree_pending_objects:0
lazyfreed_objects:0

# Persistence
loading:0
async_loading:0
current_cow_peak:0
current_cow_size:0
current_cow_size_age:0
current_fork_perc:0.00
current_save_keys_processed:0
current_save_keys_total:0
rdb_changes_since_last_save:177
rdb_bgsave_in_progress:0
rdb_last_save_time:1714697000
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:-1
rdb_current_bgsave_time_sec:-1
rdb_saves:494
rdb_last_cow_size:0
rdb_last_load_keys_expired:0
rdb_last_load_keys_loaded:0
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok
aof_rewrites:0
aof_rewrites_consecutive_failures:0
aof_last_write_status:ok
aof_last_cow_size:0
module_fork_in_progress:0
module_fork_last_cow_size:0

# Stats
total_connections_received:362
total_commands_processed:408146
instantaneous_ops_per_sec:0
total_net_input_bytes:225821499
total_net_output_bytes:12379217
total_net_repl_input_bytes:974680
total_net_repl_output_bytes:0
instantaneous_input_kbps:0.00
instantaneous_output_kbps:0.00
instantaneous_input_repl_kbps:0.00
instantaneous_output_repl_kbps:0.00
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:125
expired_stale_perc:0.00
expired_time_cap_reached_count:0
expire_cycle_cpu_milliseconds:33902
evicted_keys:0
evicted_clients:0
total_eviction_exceeded_time:0
current_eviction_exceeded_time:0
keyspace_hits:90
keyspace_misses:275127
pubsub_channels:0
pubsub_patterns:0
pubsubshard_channels:0
latest_fork_usec:0
total_forks:0
migrate_cached_sockets:0
slave_expires_tracked_keys:0
active_defrag_hits:0
active_defrag_misses:0
active_defrag_key_hits:0
active_defrag_key_misses:0
total_active_defrag_time:0
current_active_defrag_time:0
tracking_total_keys:0
tracking_total_items:0
tracking_total_prefixes:0
unexpected_error_replies:0
total_error_replies:895
dump_payload_sanitizations:0
total_reads_processed:117218
total_writes_processed:116902
io_threaded_reads_processed:0
io_threaded_writes_processed:0
reply_buffer_shrinks:325
reply_buffer_expands:19
eventloop_cycles:4958210
eventloop_duration_sum:830819605
eventloop_duration_cmd_sum:5270685
instantaneous_eventloop_cycles_per_sec:9
instantaneous_eventloop_duration_usec:124
acl_access_denied_auth:0
acl_access_denied_cmd:0
acl_access_denied_key:0
acl_access_denied_channel:0

# Replication
role:master
connected_slaves:0
master_failover_state:no-failover
master_replid:c2783aad6349da5372010e05627924132bf92f13
master_replid2:ebdc0560f3a748289feb1d683f401f80e02b33d5
master_repl_offset:0
second_repl_offset:1
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:345.686825
used_cpu_user:364.596687
used_cpu_sys_children:0.003865
used_cpu_user_children:0.001736
used_cpu_sys_main_thread:345.620447
used_cpu_user_main_thread:364.557252

# Modules

# Errorstats
errorstat_ERR:count=895

# Cluster
cluster_enabled:0

# Keyspace
db0:keys=181,expires=177,avg_ttl=28236498

# Keys
# NOTE: more keys available in the database
xuUrC8Lwbziz3cKVvvuk9_-D6YaRXCC2v60eQ6UhFKs
0K416tnX0fTcG3hqyFuy54bYAbrfjf4eFD1C2oJe4hY
#|onrDBLebBmCWB9bi1-Ya4HSCWRrrOkIhSG5dKR7G_z1gXpxOAoNv4OtDuhotfu3L
kvuw5B5mbWRcQ4PbsgGxUUCIZIEq-BD09wQGLVsc30A
VofNZbD5Vlon7Pouqe6gljWSt-pKRSvbIwMIhblKGhE
hrPakyXQHMqw5GSnCWEjL4uGkGjkuQLimkAaBAk2f0g
ciceXgpzQBYX5f8n-jWbSHs0h1g42ncieWLN6syEKPg
mBuB50881MXo12CKjwhRuNMvZUKAoeeVPr9DKdARAIQ
pFDMdfrMqLyk0Fvk-_dV3M-mcyBXAtsWb4WWE7f0hC0
Fr4MNTRAskkZ2nJgF8A94UXwsajGCCgRCLzCVd39m9U

# Connected Clients
id=3 addr=172.22.0.5:48000 laddr=172.22.0.3:6379 fd=8 name= age=485566 idle=11 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=4 addr=172.22.0.5:48002 laddr=172.22.0.3:6379 fd=9 name= age=485566 idle=11 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=370 addr=224.102.45.231:49532 laddr=172.22.0.3:6379 fd=10 name= age=0 idle=0 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=26 qbuf-free=20448 argv-mem=10 multi-mem=0 rbs=1024 rbp=540 obl=0 oll=0 omem=0 tot-mem=22426 events=r cmd=client|list user=default redir=-1 resp=2 lib-name= lib-ver=

65.108.90.128

Last Seen: 2024-05-08

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1831236904 | 2024-05-03T18:32:28.420549
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-05-08T16:43:00.518359
80 / tcp

nginx1.18.0

184219410 | 2024-05-08T16:43:03.253605
443 / tcp

nginx1.18.0

-1596115530 | 2024-04-30T15:51:30.496538
3000 / tcp

-1246004407 | 2024-05-07T19:57:07.301011
4000 / tcp

-1622095144 | 2024-05-03T01:01:14.967876
6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

65.108.90.128

Last Seen: 2024-05-08

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1831236904 | 2024-05-03T18:32:28.420549 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-05-08T16:43:00.518359 80 / tcp

nginx1.18.0

184219410 | 2024-05-08T16:43:03.253605 443 / tcp

nginx1.18.0

-1596115530 | 2024-04-30T15:51:30.496538 3000 / tcp

-1246004407 | 2024-05-07T19:57:07.301011 4000 / tcp

-1622095144 | 2024-05-03T01:01:14.967876 6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

1831236904 | 2024-05-03T18:32:28.420549
22 / tcp

589765266 | 2024-05-08T16:43:00.518359
80 / tcp

184219410 | 2024-05-08T16:43:03.253605
443 / tcp

-1596115530 | 2024-04-30T15:51:30.496538
3000 / tcp

-1246004407 | 2024-05-07T19:57:07.301011
4000 / tcp

-1622095144 | 2024-05-03T01:01:14.967876
6379 / tcp