GeneralInformation

Hostnames	mastodon.rbl.one static.170.158.75.5.clients.your-server.de
Domains	rbl.one your-server.de
Country	Germany
City	Nürnberg
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

391937305 | 2025-03-21T13:23:23.652061

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBKz+NtJP46eE2adTJL9vDtZM
yIwev/EjlNPCCgWlLk2tF649hfTgp0AqeP58PIjujYo6lblwfSwJSiatPV++Ylw=
Fingerprint: 5b:01:86:e2:92:6f:ab:30:65:e9:32:3a:ed:83:ff:61

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-03-06T18:05:51.207463

Hashes

hash

-1150644584

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 06 Mar 2025 18:05:51 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 14 Dec 2022 10:36:46 GMT
Connection: keep-alive
ETag: "6399a73e-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

0 | 2025-03-24T08:07:16.743815

Hashes

hash

1465803909

http.dom_hash

http.favicon.hash

-1269979934

http.html_hash

http.robots_hash

839895618

HTTP/1.1 403 Forbidden
Date: Mon, 24 Mar 2025 08:07:15 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:6d:d3:be:63:16:6c:5c:d1:14:48:31:66:cb:cc:37:44:c3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Feb  4 10:52:16 2025 GMT
            Not After : May  5 10:52:15 2025 GMT
        Subject: CN=mastodon.rbl.one
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a4:01:25:39:5d:33:cb:77:27:99:f7:95:b7:5a:
                    ad:31:f7:f0:c5:31:c9:48:ea:3a:68:77:34:33:66:
                    b6:df:14:d9:57:1c:50:a3:e6:1b:7a:1b:06:f5:8f:
                    17:ab:a7:4c:4e:bd:de:dd:48:9e:37:1b:2a:60:d6:
                    f9:a4:19:25:e4:39:da:f8:3b:3a:ad:e6:7a:92:7a:
                    02:b3:6a:e1:00:30:4c:21:36:c8:17:94:c3:83:d5:
                    fa:fe:5c:14:11:a2:70:4f:db:76:11:7b:18:49:df:
                    fd:c7:ce:6f:d4:a7:54:2b:fc:5a:28:c8:29:ca:0b:
                    49:6b:fa:4d:af:d3:96:6b:2b:0a:f1:d6:aa:0c:dd:
                    2e:10:16:01:66:14:32:46:0d:98:76:ca:0d:29:c4:
                    08:08:2b:e7:e0:db:ef:83:ac:7a:b8:ba:fa:2f:bd:
                    2f:90:e5:67:64:d3:1c:d4:e4:86:67:56:66:21:f8:
                    08:0c:86:cb:44:5d:d0:bd:b3:9e:e1:31:1c:9e:6f:
                    b6:f3:ad:ec:fb:9c:64:f3:b9:3b:0f:53:5e:b9:03:
                    61:17:4e:fd:64:a0:80:ec:c9:0b:c9:68:45:46:3b:
                    80:4d:2c:e0:5a:85:a1:3e:9a:55:6b:06:a5:a2:12:
                    f4:f1:4a:b2:c9:56:df:2f:cd:da:17:e1:ea:65:9b:
                    85:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8D:56:D4:C4:8E:B5:D9:91:C1:64:73:0C:DA:FE:C1:57:54:7F:8B:DB
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:mastodon.rbl.one
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Feb  4 11:50:46.877 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:46:56:E0:50:53:10:46:E2:31:D7:BB:4C:
                                69:4B:93:79:12:BA:B0:59:77:C9:BE:85:4E:12:89:B6:
                                E0:93:72:F5:02:21:00:E6:59:D0:30:44:16:2C:4D:89:
                                4E:0E:D8:E2:4E:75:B1:01:AE:CA:4F:3A:09:8E:80:B6:
                                98:52:F7:44:AC:4B:43
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Feb  4 11:50:47.112 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:52:48:D7:74:02:6E:3E:40:B3:10:47:E6:
                                84:2B:D5:9B:FC:29:FE:58:3F:98:0D:65:BE:AE:7E:BE:
                                B6:B1:41:61:02:21:00:CD:B9:9B:AE:4B:DF:AD:13:5C:
                                43:A8:BA:AE:42:FB:3A:9E:F2:77:85:AC:48:10:46:3F:
                                B7:0E:A8:32:F2:64:D6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5c:c1:48:90:00:c4:7b:be:62:0a:3a:53:d9:9c:cc:66:c3:b8:
        47:4e:67:21:5d:9a:f5:60:1a:b4:59:0b:28:76:78:c3:b4:9e:
        af:db:91:c1:88:83:9d:64:ed:8a:7e:79:da:c6:d7:39:0b:30:
        4e:90:82:8e:25:d3:a7:dd:f2:fd:6c:04:7c:22:9f:03:e2:cd:
        e1:65:4a:04:04:cc:f6:af:bc:b9:bf:ce:90:fe:31:e5:db:5f:
        9d:7e:71:c0:ac:b6:9d:55:db:27:2a:06:80:ed:99:40:26:99:
        46:7a:6e:7c:67:c8:88:e4:81:94:fe:02:f6:36:12:65:4d:85:
        07:7c:fd:e6:12:f7:34:e1:b1:7f:e0:08:df:89:59:5d:1b:9f:
        7a:c9:61:56:0e:ab:3e:7c:e2:5e:3f:e8:78:41:bb:c6:93:56:
        55:70:12:3a:e6:46:c3:4a:b8:cb:91:f2:10:97:2f:8a:32:b1:
        a0:07:aa:b8:06:cd:39:98:32:86:c8:81:7a:9f:cd:97:5f:50:
        fa:4e:43:56:e5:a7:2a:41:de:d5:df:2a:a3:f6:88:98:7c:60:
        81:54:8e:bd:de:da:76:ea:51:4c:95:27:de:3f:92:a8:fe:7d:
        d8:54:bc:6e:79:25:42:89:a0:93:45:0c:1e:de:61:a9:5c:dc:
        49:14:be:85

5.75.158.170

Last Seen: 2025-03-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

391937305 | 2025-03-21T13:23:23.652061

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

1651973090 | 2025-03-06T18:05:51.207463

Hashes

nginx1.18.0

443 / tcp

0 | 2025-03-24T08:07:16.743815

Hashes

Products

Pricing

Contact Us

5.75.158.170

Last Seen: 2025-03-24

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

22 / tcp 391937305 | 2025-03-21T13:23:23.652061

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 1651973090 | 2025-03-06T18:05:51.207463

Hashes

nginx1.18.0

443 / tcp 0 | 2025-03-24T08:07:16.743815

Hashes

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

391937305 | 2025-03-21T13:23:23.652061

80 / tcp

1651973090 | 2025-03-06T18:05:51.207463

443 / tcp

0 | 2025-03-24T08:07:16.743815