API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 20th, 2017
481
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.69 KB | None | 0 0
raw download clone embed print report
  1. netstat -a | grep https
  2. tcp6 0 0 [::]:https [::]:* LISTEN
  3.  
  4. netstat -lnp|grep 443
  5. tcp6 0 0 :::443 :::* LISTEN 1644/apache2
  6.  
  7. ps waux |grep 1644
  8. root 1644 0.0 0.4 418960 35564 ? Ss 23:32 0:00 /usr/sbin/apache2 -k start
  9.  
  10. <IfModule ssl_module>
  11. Listen my.server.ip.add:443
  12. </IfModule>
  13.  
  14. <IfModule mod_gnutls.c>
  15. Listen my.server.ip.add:443
  16. </IfModule>
  17.  
  18. tcp 0 0 my.server.ip.add:443 0.0.0.0:* LISTEN 24821/apache2
  19.  
  20. root 24821 0.0 0.4 418960 35896 ? Ss 18:50 0:00 /usr/sbin/apache2 -k start
  21.  
  22. Starting Nmap 7.01 ( https://nmap.org ) at 2017-08-19 16:49 EDT
  23. Nmap scan report for example.exampleserver.com (example ip)
  24. Host is up (0.000032s latency).
  25. Not shown: 996 closed ports
  26. PORT STATE SERVICE
  27. 22/tcp open ssh
  28. 25/tcp open smtp
  29. 80/tcp open http
  30. 443/tcp open https
  31.  
  32. <IfModule mod_ssl.c>
  33. <VirtualHost my.ip:443>
  34. ServerAdmin webmaster@example.com
  35. ServerName example.com
  36. ServerAlias www.example.com
  37. DirectoryIndex index.html
  38. DocumentRoot /path/to/my/site
  39. ErrorLog /var/log/apache2/example.log
  40. CustomLog /var/log/apache2/example-access.log combined
  41.  
  42.  
  43. SSLEngine on
  44. SSLCertificateFile /path/to/ssl/example.crt
  45. SSLCertificateKeyFile /path/to/ssl/examaple.com.key
  46. SSLCertificateChainFile /path/to/ssl/gd_bundle-g2-g1.crt
  47.  
  48. <FilesMatch ".(cgi|shtml|phtml|php)$">
  49. SSLOptions +StdEnvVars
  50. </FilesMatch>
  51. <Directory /usr/lib/cgi-bin>
  52. SSLOptions +StdEnvVars
  53. </Directory>
  54. BrowserMatch "MSIE [2-6]"
  55. nokeepalive ssl-unclean-shutdown
  56. downgrade-1.0 force-response-1.0
  57. BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown
  58.  
  59. <Directory /path/to/my/site>
  60. Options Indexes FollowSymLinks
  61.  
  62. AllowOverride All
  63. Require all granted
  64. AddDefaultCharset On
  65. AddDefaultCharset utf-8
  66.  
  67. <Files *.html>
  68. ForceType text/html;charset=utf-8
  69. </Files>
  70. </Directory>
  71. </VirtualHost>
  72. </IfModule>
  73.  
  74. ls /etc/apache2/mods-e*
  75. access_compat.load authn_core.load authz_user.load deflate.load expires.load mime.load negotiation.load setenvif.conf ssl.load
  76. alias.conf authn_file.load autoindex.conf dir.conf filter.load mpm_prefork.conf php7.0.conf setenvif.load status.conf
  77. alias.load authz_core.load autoindex.load dir.load headers.load mpm_prefork.load php7.0.load socache_shmcb.load status.load
  78. auth_basic.load authz_host.load deflate.conf env.load mime.conf negotiation.conf rewrite.load ssl.conf
  79.  
  80. nslookup example.com
  81. Server: 2001:578:3f::30
  82. Address: 2001:578:3f::30#53
  83.  
  84. Non-authoritative answer:
  85. Name: example.com
  86. Address: my.v4.ip.add
  87.  
  88. nslookup example.com
  89. Server: some.v4..add
  90. Address: some.v4..add#53
  91.  
  92. Non-authoritative answer:
  93. Name: example.com
  94. Address: my.v4.ip.add
  95.  
  96. Chain INPUT (policy DROP)
  97. target prot opt source destination
  98. ufw-before-logging-input all -- 0.0.0.0/0 0.0.0.0/0
  99. ufw-before-input all -- 0.0.0.0/0 0.0.0.0/0
  100. ufw-after-input all -- 0.0.0.0/0 0.0.0.0/0
  101. ufw-after-logging-input all -- 0.0.0.0/0 0.0.0.0/0
  102. ufw-reject-input all -- 0.0.0.0/0 0.0.0.0/0
  103. ufw-track-input all -- 0.0.0.0/0 0.0.0.0/0
  104.  
  105. Chain FORWARD (policy DROP)
  106. target prot opt source destination
  107. ufw-before-logging-forward all -- 0.0.0.0/0 0.0.0.0/0
  108. ufw-before-forward all -- 0.0.0.0/0 0.0.0.0/0
  109. ufw-after-forward all -- 0.0.0.0/0 0.0.0.0/0
  110. ufw-after-logging-forward all -- 0.0.0.0/0 0.0.0.0/0
  111. ufw-reject-forward all -- 0.0.0.0/0 0.0.0.0/0
  112. ufw-track-forward all -- 0.0.0.0/0 0.0.0.0/0
  113.  
  114. Chain OUTPUT (policy ACCEPT)
  115. target prot opt source destination
  116. ufw-before-logging-output all -- 0.0.0.0/0 0.0.0.0/0
  117. ufw-before-output all -- 0.0.0.0/0 0.0.0.0/0
  118. ufw-after-output all -- 0.0.0.0/0 0.0.0.0/0
  119. ufw-after-logging-output all -- 0.0.0.0/0 0.0.0.0/0
  120. ufw-reject-output all -- 0.0.0.0/0 0.0.0.0/0
  121. ufw-track-output all -- 0.0.0.0/0 0.0.0.0/0
  122.  
  123. Chain ufw-after-forward (1 references)
  124. target prot opt source destination
  125.  
  126. Chain ufw-after-input (1 references)
  127. target prot opt source destination
  128. ufw-skip-to-policy-input udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:137
  129. ufw-skip-to-policy-input udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:138
  130. ufw-skip-to-policy-input tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:139
  131. ufw-skip-to-policy-input tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:445
  132. ufw-skip-to-policy-input udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67
  133. ufw-skip-to-policy-input udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:68
  134. ufw-skip-to-policy-input all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
  135.  
  136. Chain ufw-after-logging-forward (1 references)
  137. target prot opt source destination
  138. LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  139.  
  140. Chain ufw-after-logging-input (1 references)
  141. target prot opt source destination
  142. LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  143.  
  144. Chain ufw-after-logging-output (1 references)
  145. target prot opt source destination
  146.  
  147. Chain ufw-after-output (1 references)
  148. target prot opt source destination
  149.  
  150. Chain ufw-before-forward (1 references)
  151. target prot opt source destination
  152. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  153. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 3
  154. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 4
  155. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 11
  156. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 12
  157. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 8
  158. ufw-user-forward all -- 0.0.0.0/0 0.0.0.0/0
  159.  
  160. Chain ufw-before-input (1 references)
  161. target prot opt source destination
  162. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
  163. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  164. ufw-logging-deny all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
  165. DROP all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
  166. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 3
  167. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 4
  168. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 11
  169. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 12
  170. ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 8
  171. ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:67 dpt:68
  172. ufw-not-local all -- 0.0.0.0/0 0.0.0.0/0
  173. ACCEPT udp -- 0.0.0.0/0 224.0.0.251 udp dpt:5353
  174. ACCEPT udp -- 0.0.0.0/0 239.255.255.250 udp dpt:1900
  175. ufw-user-input all -- 0.0.0.0/0 0.0.0.0/0
  176.  
  177. Chain ufw-before-logging-forward (1 references)
  178. target prot opt source destination
  179.  
  180. Chain ufw-before-logging-input (1 references)
  181. target prot opt source destination
  182.  
  183. Chain ufw-before-logging-output (1 references)
  184. target prot opt source destination
  185.  
  186. Chain ufw-before-output (1 references)
  187. target prot opt source destination
  188. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
  189. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  190. ufw-user-output all -- 0.0.0.0/0 0.0.0.0/0
  191.  
  192. Chain ufw-logging-allow (0 references)
  193. target prot opt source destination
  194. LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] "
  195.  
  196. Chain ufw-logging-deny (2 references)
  197. target prot opt source destination
  198. RETURN all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID limit: avg 3/min burst 10
  199. LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  200.  
  201. Chain ufw-not-local (1 references)
  202. target prot opt source destination
  203. RETURN all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type LOCAL
  204. RETURN all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type MULTICAST
  205. RETURN all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
  206. ufw-logging-deny all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 10
  207. DROP all -- 0.0.0.0/0 0.0.0.0/0
  208.  
  209. Chain ufw-reject-forward (1 references)
  210. target prot opt source destination
  211.  
  212. Chain ufw-reject-input (1 references)
  213. target prot opt source destination
  214.  
  215. Chain ufw-reject-output (1 references)
  216. target prot opt source destination
  217.  
  218. Chain ufw-skip-to-policy-forward (0 references)
  219. target prot opt source destination
  220. DROP all -- 0.0.0.0/0 0.0.0.0/0
  221.  
  222. Chain ufw-skip-to-policy-input (7 references)
  223. target prot opt source destination
  224. DROP all -- 0.0.0.0/0 0.0.0.0/0
  225.  
  226. Chain ufw-skip-to-policy-output (0 references)
  227. target prot opt source destination
  228. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
  229.  
  230. Chain ufw-track-forward (1 references)
  231. target prot opt source destination
  232.  
  233. Chain ufw-track-input (1 references)
  234. target prot opt source destination
  235.  
  236. Chain ufw-track-output (1 references)
  237. target prot opt source destination
  238. ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  239. ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 ctstate NEW
  240.  
  241. Chain ufw-user-forward (1 references)
  242. target prot opt source destination
  243.  
  244. Chain ufw-user-input (1 references)
  245. target prot opt source destination
  246. ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
  247. ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:22
  248. ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
  249. ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:80
  250.  
  251. Chain ufw-user-limit (0 references)
  252. target prot opt source destination
  253. LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] "
  254. REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
  255.  
  256. Chain ufw-user-limit-accept (0 references)
  257. target prot opt source destination
  258. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
  259.  
  260. Chain ufw-user-logging-forward (0 references)
  261. target prot opt source destination
  262.  
  263. Chain ufw-user-logging-input (0 references)
  264. target prot opt source destination
  265.  
  266. Chain ufw-user-logging-output (0 references)
  267. target prot opt source destination
  268.  
  269. Chain ufw-user-output (1 references)
  270. target prot opt source destination
  271.  
  272. [Sun Aug 20 18:50:55.777189 2017] [core:notice] [pid 1644] AH00051: child pid 23072 exit signal Segmentation fault (11), possible coredump in /etc/apache2
  273. [Sun Aug 20 18:50:55.777276 2017] [mpm_prefork:notice] [pid 1644] AH00169: caught SIGTERM, shutting down
  274. [Sun Aug 20 18:50:56.802691 2017] [mpm_prefork:notice] [pid 24821] AH00163: Apache/2.4.18 (Ubuntu) OpenSSL/1.0.2g configured -- resuming normal operations
  275. [Sun Aug 20 18:50:56.802777 2017] [core:notice] [pid 24821] AH00094: Command line: '/usr/sbin/apache2'
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!