Hostnames |
proto.gohost.ru xn--80aqeo.xn--p1acf www.xn--80aqeo.xn--p1acf |
Domains | gohost.ru xn--80aqeo.xn--p1acf |
Country | Russian Federation |
City | Moscow |
Organization | Dedicated and colocation servers network |
ISP | EDINAYA SET LIMITED LIABILITY COMPANY |
ASN | AS39134 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
CVE-2019-9516 | 6.8Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory. |
CVE-2019-9513 | 7.8Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU. |
CVE-2019-9511 | 7.8Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both. |
CVE-2019-20372 | 4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer. |
1176712718 | 2024-04-13T23:41:41.66529625 / tcp
220 proto.gohost.ru ESMTP Exim 4.84_2 Sun, 14 Apr 2024 02:41:25 +0300 250-proto.gohost.ru Hello 8de87uqcoi7lyo7.net [207.90.244.17] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-AUTH PLAIN LOGIN CRAM-MD5 250-STARTTLS 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 03:77:11:37:f1:07:91:00:96:fa:22:df:ac:dc:6b:5e:0e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 27 06:18:11 2024 GMT Not After : May 27 06:18:10 2024 GMT Subject: CN=*.gohost.ru Subject Public Key Info: Public Key Algorithm: id-ecPublicKey Public-Key: (256 bit) pub: 04:a5:98:60:57:a7:cf:87:13:3a:1f:16:8e:da:7a: 3a:19:3c:ff:c4:8c:1c:26:c2:07:7f:83:d1:0a:45: df:f7:07:b4:7c:34:12:dd:ab:17:14:f9:8b:5d:f4: 12:f9:00:fc:e5:bb:a9:8e:05:b4:3c:86:d1:63:fb: 36:e0:89:10:af ASN1 OID: prime256v1 NIST CURVE: P-256 X509v3 extensions: X509v3 Key Usage: critical Digital Signature X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 70:4D:BE:C9:82:B9:6E:53:5D:56:1A:5B:75:25:89:AA:51:29:CA:B3 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.gohost.ru X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Feb 27 07:18:11.637 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:1B:B6:E0:E6:C5:E7:98:FD:16:4C:64:C7: C7:CE:31:59:51:91:CF:74:BD:BA:D8:98:A2:1A:BC:A8: 47:BB:22:A5:02:21:00:C1:DA:86:D4:B0:C6:F1:FA:42: BE:E9:16:65:8C:C7:5C:83:4B:D9:86:4B:AA:27:56:4E: 18:CD:95:E3:DA:81:E7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Feb 27 07:18:11.835 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:49:F8:E9:B6:9F:23:92:A3:65:11:42:A0: E9:6C:4D:35:80:13:D1:0A:17:DA:52:7D:5E:88:5B:BE: 81:5A:8D:75:02:21:00:E1:EA:6C:25:D6:D6:D8:BD:80: B9:EF:DB:D0:C4:33:42:F3:7C:C0:88:E5:40:7A:1F:16: 15:1B:BC:5B:10:E7:EA Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:25:4d:5d:06:40:d3:d6:c3:bb:a9:dd:9f:54:6f:cc:30:97: f1:2d:66:69:6d:aa:47:c0:8c:83:67:d9:be:34:85:82:2b:72: 76:88:f2:6e:ac:e8:5b:57:51:8a:b4:23:0b:f0:62:ce:e4:48: d5:d4:e4:2b:23:b1:a5:c2:d1:a1:17:a8:57:de:8d:aa:aa:d3: 32:58:e1:fa:29:1a:8c:d8:3e:b7:ed:62:b2:55:99:43:7f:b8: 97:18:e0:bc:9d:48:48:d6:f6:b3:8a:8d:be:73:79:22:33:98: 46:c0:cf:5c:64:a9:83:cc:0e:a1:1c:32:b9:17:d9:5e:6e:67: 7a:5c:30:da:4a:aa:aa:ca:77:ac:00:ff:59:13:dd:6b:e0:cd: e5:08:b7:65:88:9f:a8:4f:0b:37:ae:8e:0f:15:bf:88:0c:98: 9c:8f:5e:03:1d:57:af:66:3c:f6:c6:46:e1:52:b6:f2:5b:40: ad:b2:fd:81:0f:f1:4d:cd:71:4e:85:e5:5d:88:62:e5:82:27: b0:aa:31:3d:c7:54:fd:35:c1:c7:0a:28:0b:83:9f:3f:21:5b: 24:43:59:25:2a:4f:b6:b6:72:7f:57:13:79:bc:ed:8b:4f:fd: 72:ca:8a:6d:b0:ee:54:04:9a:3d:a7:25:82:98:ec:8a:48:a0: 4c:d8:4a:45
-2068127582 | 2024-04-14T04:17:32.49813653 / tcp
PowerDNS Authoritative Server 3.4.1 (jenkins@autotest.powerdns.com built 20190703123354 root@) Resolver ID: proto
-2068127582 | 2024-04-04T02:08:39.51483153 / udp
PowerDNS Authoritative Server 3.4.1 (jenkins@autotest.powerdns.com built 20190703123354 root@) Resolver ID: proto
-949621339 | 2024-04-21T13:32:22.85806080 / tcp
HTTP/1.1 200 OK Server: nginx/1.16.0 Date: Sun, 21 Apr 2024 13:32:22 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding
-38198289 | 2024-04-13T19:03:11.364208123 / udp
NTP protocolversion: 3 stratum: 3 leap: 0 precision: -23 rootdelay: 0.0490417480469 rootdisp: 0.0886535644531 refid: 784076950 reftime: 3922023718.69 poll: 3
115487969 | 2024-04-22T04:22:45.284837143 / tcp
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready. * CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5 A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 03:77:11:37:f1:07:91:00:96:fa:22:df:ac:dc:6b:5e:0e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 27 06:18:11 2024 GMT Not After : May 27 06:18:10 2024 GMT Subject: CN=*.gohost.ru Subject Public Key Info: Public Key Algorithm: id-ecPublicKey Public-Key: (256 bit) pub: 04:a5:98:60:57:a7:cf:87:13:3a:1f:16:8e:da:7a: 3a:19:3c:ff:c4:8c:1c:26:c2:07:7f:83:d1:0a:45: df:f7:07:b4:7c:34:12:dd:ab:17:14:f9:8b:5d:f4: 12:f9:00:fc:e5:bb:a9:8e:05:b4:3c:86:d1:63:fb: 36:e0:89:10:af ASN1 OID: prime256v1 NIST CURVE: P-256 X509v3 extensions: X509v3 Key Usage: critical Digital Signature X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 70:4D:BE:C9:82:B9:6E:53:5D:56:1A:5B:75:25:89:AA:51:29:CA:B3 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.gohost.ru X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Feb 27 07:18:11.637 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:1B:B6:E0:E6:C5:E7:98:FD:16:4C:64:C7: C7:CE:31:59:51:91:CF:74:BD:BA:D8:98:A2:1A:BC:A8: 47:BB:22:A5:02:21:00:C1:DA:86:D4:B0:C6:F1:FA:42: BE:E9:16:65:8C:C7:5C:83:4B:D9:86:4B:AA:27:56:4E: 18:CD:95:E3:DA:81:E7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Feb 27 07:18:11.835 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:49:F8:E9:B6:9F:23:92:A3:65:11:42:A0: E9:6C:4D:35:80:13:D1:0A:17:DA:52:7D:5E:88:5B:BE: 81:5A:8D:75:02:21:00:E1:EA:6C:25:D6:D6:D8:BD:80: B9:EF:DB:D0:C4:33:42:F3:7C:C0:88:E5:40:7A:1F:16: 15:1B:BC:5B:10:E7:EA Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:25:4d:5d:06:40:d3:d6:c3:bb:a9:dd:9f:54:6f:cc:30:97: f1:2d:66:69:6d:aa:47:c0:8c:83:67:d9:be:34:85:82:2b:72: 76:88:f2:6e:ac:e8:5b:57:51:8a:b4:23:0b:f0:62:ce:e4:48: d5:d4:e4:2b:23:b1:a5:c2:d1:a1:17:a8:57:de:8d:aa:aa:d3: 32:58:e1:fa:29:1a:8c:d8:3e:b7:ed:62:b2:55:99:43:7f:b8: 97:18:e0:bc:9d:48:48:d6:f6:b3:8a:8d:be:73:79:22:33:98: 46:c0:cf:5c:64:a9:83:cc:0e:a1:1c:32:b9:17:d9:5e:6e:67: 7a:5c:30:da:4a:aa:aa:ca:77:ac:00:ff:59:13:dd:6b:e0:cd: e5:08:b7:65:88:9f:a8:4f:0b:37:ae:8e:0f:15:bf:88:0c:98: 9c:8f:5e:03:1d:57:af:66:3c:f6:c6:46:e1:52:b6:f2:5b:40: ad:b2:fd:81:0f:f1:4d:cd:71:4e:85:e5:5d:88:62:e5:82:27: b0:aa:31:3d:c7:54:fd:35:c1:c7:0a:28:0b:83:9f:3f:21:5b: 24:43:59:25:2a:4f:b6:b6:72:7f:57:13:79:bc:ed:8b:4f:fd: 72:ca:8a:6d:b0:ee:54:04:9a:3d:a7:25:82:98:ec:8a:48:a0: 4c:d8:4a:45
-1060569017 | 2024-04-24T01:44:18.743235443 / tcp
HTTP/1.1 403 Forbidden Server: nginx/1.16.0 Date: Wed, 24 Apr 2024 01:44:18 GMT Content-Type: text/html Content-Length: 8497 Connection: keep-alive ETag: "61dd4e22-2131"
Certificate: Data: Version: 3 (0x2) Serial Number: 03:6a:98:8b:ef:4a:eb:ab:31:57:6f:da:c6:ba:df:af:85:02 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 1 23:57:18 2024 GMT Not After : Jun 30 23:57:17 2024 GMT Subject: CN=xn--80aqeo.xn--p1acf Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (4096 bit) Modulus: 00:af:66:ba:a2:89:e6:3d:64:8c:e4:04:ea:46:0f: 43:62:25:e3:9a:1c:33:51:b9:1a:82:42:f6:5c:d1: 00:4b:bf:aa:89:a3:b9:3a:00:ce:90:d7:a2:ea:3f: 0a:67:fb:1b:4a:9e:6d:ae:f2:5d:ad:a8:d0:bf:aa: 4d:5d:a6:d1:8a:f4:84:b4:10:2a:2d:42:89:aa:8b: e0:5f:0b:b1:fc:49:5f:30:4f:79:17:fb:b9:c6:a8: 28:de:54:59:44:23:61:50:75:e0:33:9a:bc:1a:f1: 8d:80:c9:2e:0c:7c:d0:30:a3:18:cc:fb:35:2d:e9: e6:72:a6:f8:e6:e5:e9:f1:d9:cb:dd:4c:70:43:26: a4:c8:d0:a3:c7:4e:ed:03:23:14:7d:b0:c8:fa:00: 91:82:db:1f:b5:72:4a:1c:30:f5:0b:dc:73:26:41: 09:bb:d6:59:36:2f:41:35:c2:8f:e7:3c:f5:2c:14: 59:e9:84:4f:af:29:4d:3a:91:d1:44:cd:a9:a6:75: 38:65:df:8d:7f:7d:79:4e:e9:c0:0d:26:1e:74:4e: a1:63:dc:02:73:b0:47:fc:61:23:21:35:61:db:68: d9:6b:29:5d:12:0f:fd:70:23:c1:3c:9b:eb:28:b4: 57:ad:13:cb:90:5a:18:80:5c:d1:e3:23:95:76:2d: 75:1f:87:39:a8:af:29:c3:d4:04:35:2a:03:dc:27: 6d:a6:38:da:c7:43:31:82:4f:a6:c6:d1:b5:15:57: 8b:31:34:e4:5a:34:cc:c5:4c:d0:d3:77:a3:f5:90: 47:df:2a:ad:60:42:2c:21:09:4c:c1:89:5f:b9:d0: f7:a1:dc:98:24:4e:df:f5:16:f3:04:7b:21:1e:81: a4:6e:33:d8:8d:0c:31:d8:fc:61:79:87:41:62:76: 48:7e:0d:9c:a7:c9:c1:1a:94:46:c9:20:fc:c5:72: 59:24:82:31:d7:5b:04:15:1e:5e:02:29:49:8e:e1: 5f:fa:88:ba:91:f4:42:9c:83:e6:2c:b2:69:f3:be: 81:1a:53:09:61:3a:ab:f0:26:9d:76:70:38:b4:38: 73:80:d0:ec:72:99:bc:a5:ce:36:6e:f9:80:d9:85: c1:6c:b9:ed:8c:b1:8c:b2:cd:c0:f1:b9:09:ed:28: 5e:b0:9b:bd:87:08:dc:a3:11:0e:ee:58:32:34:75: 15:c6:f4:e8:4c:c0:af:bd:09:a0:fd:2d:67:27:0a: e0:62:f8:0d:ea:01:66:55:0a:ca:08:a5:29:57:3c: 50:c7:a5:76:34:42:5b:b4:77:4c:b2:d9:6c:d7:1e: bc:bc:72:ac:d2:11:4f:fb:11:e7:bb:ae:dd:aa:5c: bb:9b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: E0:6A:2A:C3:32:0D:04:1C:F7:BE:CB:3B:A5:B0:93:D4:37:3D:FA:29 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:www.xn--80aqeo.xn--p1acf, DNS:xn--80aqeo.xn--p1acf X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Apr 2 00:57:18.407 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:F5:F7:D9:82:77:71:D9:5A:D3:33:30: 61:C4:67:0A:73:6C:30:7B:E4:8F:2B:CD:28:D0:92:97: 7F:50:9A:92:B7:02:21:00:B3:15:47:20:54:E8:55:75: D2:69:7A:D8:E5:9A:D5:26:F7:54:33:3D:FB:7D:06:19: FB:B9:2D:75:20:FD:EF:9C Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Apr 2 00:57:18.327 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:E8:AD:89:9A:C8:C5:B7:F8:91:35:EE: 43:FC:2B:8D:20:B2:6C:34:D7:3A:11:F1:18:9E:44:2B: 89:57:28:2A:C9:02:20:7C:4F:08:26:20:F0:CD:5E:22: BC:5D:F6:45:DA:15:36:42:E9:64:EA:79:C1:41:3D:3F: 22:7C:C0:2A:76:4A:A0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 19:e3:27:68:7f:f6:b6:ad:cf:9f:58:ea:20:2d:fd:fa:51:fa: d4:f4:a9:9d:da:79:69:0e:1e:c7:cc:18:42:e3:20:4a:67:1b: 21:89:2c:54:80:50:1c:23:45:df:6e:f9:fb:83:a9:89:1c:9c: 40:4c:05:f6:5a:28:91:fe:60:c3:f8:98:c8:8a:45:8d:52:ee: d3:08:a1:d4:29:8b:b3:98:37:cd:21:89:06:6f:74:b4:ed:5b: d8:db:3c:20:93:84:7a:b0:a7:b0:f6:99:b6:41:49:1b:0d:4d: 5c:d7:0d:fa:50:2f:ba:4f:1d:82:87:78:26:3f:70:86:a6:1b: 6f:e9:98:2a:eb:b7:a7:96:5f:0d:41:7b:57:82:10:fe:52:f6: 0a:c8:70:a4:0d:82:5d:12:8e:e4:dd:29:43:16:a1:d7:2f:9c: 1d:fa:37:3f:a3:17:bd:f7:6a:e5:30:ce:80:03:ef:54:e0:2c: 47:ec:bd:5b:97:e4:26:53:af:77:dc:38:12:3e:d0:ec:31:54: d4:8d:52:24:ee:6b:44:aa:a3:39:77:71:0a:76:d5:b5:30:a7: dd:77:47:1a:78:0c:8c:58:d9:45:d4:fb:33:d9:ab:3a:93:a9: 8c:fb:2e:7b:8c:69:42:42:e1:03:a5:54:d0:d1:f9:68:98:dc: 1f:d4:73:cb
-937361935 | 2024-04-20T09:26:24.954560465 / tcp
220 proto.gohost.ru ESMTP Exim 4.84_2 Sat, 20 Apr 2024 12:26:07 +0300 250-proto.gohost.ru Hello 224.24.179.175 [224.24.179.175] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-AUTH PLAIN LOGIN CRAM-MD5 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 03:77:11:37:f1:07:91:00:96:fa:22:df:ac:dc:6b:5e:0e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 27 06:18:11 2024 GMT Not After : May 27 06:18:10 2024 GMT Subject: CN=*.gohost.ru Subject Public Key Info: Public Key Algorithm: id-ecPublicKey Public-Key: (256 bit) pub: 04:a5:98:60:57:a7:cf:87:13:3a:1f:16:8e:da:7a: 3a:19:3c:ff:c4:8c:1c:26:c2:07:7f:83:d1:0a:45: df:f7:07:b4:7c:34:12:dd:ab:17:14:f9:8b:5d:f4: 12:f9:00:fc:e5:bb:a9:8e:05:b4:3c:86:d1:63:fb: 36:e0:89:10:af ASN1 OID: prime256v1 NIST CURVE: P-256 X509v3 extensions: X509v3 Key Usage: critical Digital Signature X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 70:4D:BE:C9:82:B9:6E:53:5D:56:1A:5B:75:25:89:AA:51:29:CA:B3 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.gohost.ru X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Feb 27 07:18:11.637 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:1B:B6:E0:E6:C5:E7:98:FD:16:4C:64:C7: C7:CE:31:59:51:91:CF:74:BD:BA:D8:98:A2:1A:BC:A8: 47:BB:22:A5:02:21:00:C1:DA:86:D4:B0:C6:F1:FA:42: BE:E9:16:65:8C:C7:5C:83:4B:D9:86:4B:AA:27:56:4E: 18:CD:95:E3:DA:81:E7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Feb 27 07:18:11.835 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:49:F8:E9:B6:9F:23:92:A3:65:11:42:A0: E9:6C:4D:35:80:13:D1:0A:17:DA:52:7D:5E:88:5B:BE: 81:5A:8D:75:02:21:00:E1:EA:6C:25:D6:D6:D8:BD:80: B9:EF:DB:D0:C4:33:42:F3:7C:C0:88:E5:40:7A:1F:16: 15:1B:BC:5B:10:E7:EA Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:25:4d:5d:06:40:d3:d6:c3:bb:a9:dd:9f:54:6f:cc:30:97: f1:2d:66:69:6d:aa:47:c0:8c:83:67:d9:be:34:85:82:2b:72: 76:88:f2:6e:ac:e8:5b:57:51:8a:b4:23:0b:f0:62:ce:e4:48: d5:d4:e4:2b:23:b1:a5:c2:d1:a1:17:a8:57:de:8d:aa:aa:d3: 32:58:e1:fa:29:1a:8c:d8:3e:b7:ed:62:b2:55:99:43:7f:b8: 97:18:e0:bc:9d:48:48:d6:f6:b3:8a:8d:be:73:79:22:33:98: 46:c0:cf:5c:64:a9:83:cc:0e:a1:1c:32:b9:17:d9:5e:6e:67: 7a:5c:30:da:4a:aa:aa:ca:77:ac:00:ff:59:13:dd:6b:e0:cd: e5:08:b7:65:88:9f:a8:4f:0b:37:ae:8e:0f:15:bf:88:0c:98: 9c:8f:5e:03:1d:57:af:66:3c:f6:c6:46:e1:52:b6:f2:5b:40: ad:b2:fd:81:0f:f1:4d:cd:71:4e:85:e5:5d:88:62:e5:82:27: b0:aa:31:3d:c7:54:fd:35:c1:c7:0a:28:0b:83:9f:3f:21:5b: 24:43:59:25:2a:4f:b6:b6:72:7f:57:13:79:bc:ed:8b:4f:fd: 72:ca:8a:6d:b0:ee:54:04:9a:3d:a7:25:82:98:ec:8a:48:a0: 4c:d8:4a:45
1525608393 | 2024-04-22T00:30:27.990282587 / tcp
220 proto.gohost.ru ESMTP Exim 4.84_2 Mon, 22 Apr 2024 03:30:17 +0300 250-proto.gohost.ru Hello 224.213.10.231 [224.213.10.231] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-AUTH PLAIN LOGIN CRAM-MD5 250-STARTTLS 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 03:77:11:37:f1:07:91:00:96:fa:22:df:ac:dc:6b:5e:0e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 27 06:18:11 2024 GMT Not After : May 27 06:18:10 2024 GMT Subject: CN=*.gohost.ru Subject Public Key Info: Public Key Algorithm: id-ecPublicKey Public-Key: (256 bit) pub: 04:a5:98:60:57:a7:cf:87:13:3a:1f:16:8e:da:7a: 3a:19:3c:ff:c4:8c:1c:26:c2:07:7f:83:d1:0a:45: df:f7:07:b4:7c:34:12:dd:ab:17:14:f9:8b:5d:f4: 12:f9:00:fc:e5:bb:a9:8e:05:b4:3c:86:d1:63:fb: 36:e0:89:10:af ASN1 OID: prime256v1 NIST CURVE: P-256 X509v3 extensions: X509v3 Key Usage: critical Digital Signature X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 70:4D:BE:C9:82:B9:6E:53:5D:56:1A:5B:75:25:89:AA:51:29:CA:B3 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.gohost.ru X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Feb 27 07:18:11.637 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:1B:B6:E0:E6:C5:E7:98:FD:16:4C:64:C7: C7:CE:31:59:51:91:CF:74:BD:BA:D8:98:A2:1A:BC:A8: 47:BB:22:A5:02:21:00:C1:DA:86:D4:B0:C6:F1:FA:42: BE:E9:16:65:8C:C7:5C:83:4B:D9:86:4B:AA:27:56:4E: 18:CD:95:E3:DA:81:E7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Feb 27 07:18:11.835 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:49:F8:E9:B6:9F:23:92:A3:65:11:42:A0: E9:6C:4D:35:80:13:D1:0A:17:DA:52:7D:5E:88:5B:BE: 81:5A:8D:75:02:21:00:E1:EA:6C:25:D6:D6:D8:BD:80: B9:EF:DB:D0:C4:33:42:F3:7C:C0:88:E5:40:7A:1F:16: 15:1B:BC:5B:10:E7:EA Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:25:4d:5d:06:40:d3:d6:c3:bb:a9:dd:9f:54:6f:cc:30:97: f1:2d:66:69:6d:aa:47:c0:8c:83:67:d9:be:34:85:82:2b:72: 76:88:f2:6e:ac:e8:5b:57:51:8a:b4:23:0b:f0:62:ce:e4:48: d5:d4:e4:2b:23:b1:a5:c2:d1:a1:17:a8:57:de:8d:aa:aa:d3: 32:58:e1:fa:29:1a:8c:d8:3e:b7:ed:62:b2:55:99:43:7f:b8: 97:18:e0:bc:9d:48:48:d6:f6:b3:8a:8d:be:73:79:22:33:98: 46:c0:cf:5c:64:a9:83:cc:0e:a1:1c:32:b9:17:d9:5e:6e:67: 7a:5c:30:da:4a:aa:aa:ca:77:ac:00:ff:59:13:dd:6b:e0:cd: e5:08:b7:65:88:9f:a8:4f:0b:37:ae:8e:0f:15:bf:88:0c:98: 9c:8f:5e:03:1d:57:af:66:3c:f6:c6:46:e1:52:b6:f2:5b:40: ad:b2:fd:81:0f:f1:4d:cd:71:4e:85:e5:5d:88:62:e5:82:27: b0:aa:31:3d:c7:54:fd:35:c1:c7:0a:28:0b:83:9f:3f:21:5b: 24:43:59:25:2a:4f:b6:b6:72:7f:57:13:79:bc:ed:8b:4f:fd: 72:ca:8a:6d:b0:ee:54:04:9a:3d:a7:25:82:98:ec:8a:48:a0: 4c:d8:4a:45
1055293435 | 2024-04-21T18:46:12.118370993 / tcp
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready. * CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5 A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 03:77:11:37:f1:07:91:00:96:fa:22:df:ac:dc:6b:5e:0e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 27 06:18:11 2024 GMT Not After : May 27 06:18:10 2024 GMT Subject: CN=*.gohost.ru Subject Public Key Info: Public Key Algorithm: id-ecPublicKey Public-Key: (256 bit) pub: 04:a5:98:60:57:a7:cf:87:13:3a:1f:16:8e:da:7a: 3a:19:3c:ff:c4:8c:1c:26:c2:07:7f:83:d1:0a:45: df:f7:07:b4:7c:34:12:dd:ab:17:14:f9:8b:5d:f4: 12:f9:00:fc:e5:bb:a9:8e:05:b4:3c:86:d1:63:fb: 36:e0:89:10:af ASN1 OID: prime256v1 NIST CURVE: P-256 X509v3 extensions: X509v3 Key Usage: critical Digital Signature X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 70:4D:BE:C9:82:B9:6E:53:5D:56:1A:5B:75:25:89:AA:51:29:CA:B3 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.gohost.ru X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Feb 27 07:18:11.637 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:1B:B6:E0:E6:C5:E7:98:FD:16:4C:64:C7: C7:CE:31:59:51:91:CF:74:BD:BA:D8:98:A2:1A:BC:A8: 47:BB:22:A5:02:21:00:C1:DA:86:D4:B0:C6:F1:FA:42: BE:E9:16:65:8C:C7:5C:83:4B:D9:86:4B:AA:27:56:4E: 18:CD:95:E3:DA:81:E7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Feb 27 07:18:11.835 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:49:F8:E9:B6:9F:23:92:A3:65:11:42:A0: E9:6C:4D:35:80:13:D1:0A:17:DA:52:7D:5E:88:5B:BE: 81:5A:8D:75:02:21:00:E1:EA:6C:25:D6:D6:D8:BD:80: B9:EF:DB:D0:C4:33:42:F3:7C:C0:88:E5:40:7A:1F:16: 15:1B:BC:5B:10:E7:EA Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:25:4d:5d:06:40:d3:d6:c3:bb:a9:dd:9f:54:6f:cc:30:97: f1:2d:66:69:6d:aa:47:c0:8c:83:67:d9:be:34:85:82:2b:72: 76:88:f2:6e:ac:e8:5b:57:51:8a:b4:23:0b:f0:62:ce:e4:48: d5:d4:e4:2b:23:b1:a5:c2:d1:a1:17:a8:57:de:8d:aa:aa:d3: 32:58:e1:fa:29:1a:8c:d8:3e:b7:ed:62:b2:55:99:43:7f:b8: 97:18:e0:bc:9d:48:48:d6:f6:b3:8a:8d:be:73:79:22:33:98: 46:c0:cf:5c:64:a9:83:cc:0e:a1:1c:32:b9:17:d9:5e:6e:67: 7a:5c:30:da:4a:aa:aa:ca:77:ac:00:ff:59:13:dd:6b:e0:cd: e5:08:b7:65:88:9f:a8:4f:0b:37:ae:8e:0f:15:bf:88:0c:98: 9c:8f:5e:03:1d:57:af:66:3c:f6:c6:46:e1:52:b6:f2:5b:40: ad:b2:fd:81:0f:f1:4d:cd:71:4e:85:e5:5d:88:62:e5:82:27: b0:aa:31:3d:c7:54:fd:35:c1:c7:0a:28:0b:83:9f:3f:21:5b: 24:43:59:25:2a:4f:b6:b6:72:7f:57:13:79:bc:ed:8b:4f:fd: 72:ca:8a:6d:b0:ee:54:04:9a:3d:a7:25:82:98:ec:8a:48:a0: 4c:d8:4a:45
2062522430 | 2024-04-23T17:13:09.020173995 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN DIGEST-MD5 CRAM-MD5 .
Certificate: Data: Version: 3 (0x2) Serial Number: 03:77:11:37:f1:07:91:00:96:fa:22:df:ac:dc:6b:5e:0e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 27 06:18:11 2024 GMT Not After : May 27 06:18:10 2024 GMT Subject: CN=*.gohost.ru Subject Public Key Info: Public Key Algorithm: id-ecPublicKey Public-Key: (256 bit) pub: 04:a5:98:60:57:a7:cf:87:13:3a:1f:16:8e:da:7a: 3a:19:3c:ff:c4:8c:1c:26:c2:07:7f:83:d1:0a:45: df:f7:07:b4:7c:34:12:dd:ab:17:14:f9:8b:5d:f4: 12:f9:00:fc:e5:bb:a9:8e:05:b4:3c:86:d1:63:fb: 36:e0:89:10:af ASN1 OID: prime256v1 NIST CURVE: P-256 X509v3 extensions: X509v3 Key Usage: critical Digital Signature X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 70:4D:BE:C9:82:B9:6E:53:5D:56:1A:5B:75:25:89:AA:51:29:CA:B3 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.gohost.ru X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Feb 27 07:18:11.637 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:1B:B6:E0:E6:C5:E7:98:FD:16:4C:64:C7: C7:CE:31:59:51:91:CF:74:BD:BA:D8:98:A2:1A:BC:A8: 47:BB:22:A5:02:21:00:C1:DA:86:D4:B0:C6:F1:FA:42: BE:E9:16:65:8C:C7:5C:83:4B:D9:86:4B:AA:27:56:4E: 18:CD:95:E3:DA:81:E7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Feb 27 07:18:11.835 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:49:F8:E9:B6:9F:23:92:A3:65:11:42:A0: E9:6C:4D:35:80:13:D1:0A:17:DA:52:7D:5E:88:5B:BE: 81:5A:8D:75:02:21:00:E1:EA:6C:25:D6:D6:D8:BD:80: B9:EF:DB:D0:C4:33:42:F3:7C:C0:88:E5:40:7A:1F:16: 15:1B:BC:5B:10:E7:EA Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:25:4d:5d:06:40:d3:d6:c3:bb:a9:dd:9f:54:6f:cc:30:97: f1:2d:66:69:6d:aa:47:c0:8c:83:67:d9:be:34:85:82:2b:72: 76:88:f2:6e:ac:e8:5b:57:51:8a:b4:23:0b:f0:62:ce:e4:48: d5:d4:e4:2b:23:b1:a5:c2:d1:a1:17:a8:57:de:8d:aa:aa:d3: 32:58:e1:fa:29:1a:8c:d8:3e:b7:ed:62:b2:55:99:43:7f:b8: 97:18:e0:bc:9d:48:48:d6:f6:b3:8a:8d:be:73:79:22:33:98: 46:c0:cf:5c:64:a9:83:cc:0e:a1:1c:32:b9:17:d9:5e:6e:67: 7a:5c:30:da:4a:aa:aa:ca:77:ac:00:ff:59:13:dd:6b:e0:cd: e5:08:b7:65:88:9f:a8:4f:0b:37:ae:8e:0f:15:bf:88:0c:98: 9c:8f:5e:03:1d:57:af:66:3c:f6:c6:46:e1:52:b6:f2:5b:40: ad:b2:fd:81:0f:f1:4d:cd:71:4e:85:e5:5d:88:62:e5:82:27: b0:aa:31:3d:c7:54:fd:35:c1:c7:0a:28:0b:83:9f:3f:21:5b: 24:43:59:25:2a:4f:b6:b6:72:7f:57:13:79:bc:ed:8b:4f:fd: 72:ca:8a:6d:b0:ee:54:04:9a:3d:a7:25:82:98:ec:8a:48:a0: 4c:d8:4a:45