lab1/nico/web
20 puntos) Utilizando httpie, hagan una solicitud de HTTP al servidor
○ → http https://nrywhite.lat/23197/
HTTP/1.1 200 OK
CF-RAY: 90f9cff9ce4dd6e3-IAD
Connection: keep-alive
Content-Encoding: br
Content-Type: text/html
Date: Mon, 10 Feb 2025 05:48:49 GMT
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qeqp0DWQgz9oJvWf7jVxAvqMlcSscNTXfqCTGBRd8k5I9ZPF4%2FObl4xKmjWDsBjFe%2BCszDv2gw0rPwWe2yUJQhMZ9qDUbsa4al648x9l4X%2Bf5LMEV7jHYDRcMRO2o9Y%3D"}],"group":"cf-nel","max_age":604800}
Server: cloudflare
Transfer-Encoding: chunked
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
server-timing: cfL4;desc="?proto=TCP&rtt=841&min_rtt=808&rtt_var=369&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3056&recv_bytes=762&delivery_rate=4044692&cwnd=249&unsent_bytes=0&cid=1c1e00275580406c&ts=23&x=0"
vary: accept-encoding
Index of /23197/
Index of /23197/
../
lab1/ 10-Feb-2025 02:13 -
top10/ 05-Feb-2025 06:09 -
20250128.txt 29-Jan-2025 03:12 20
(10 puntos) Utilizando curl, hagan una solicitud de HTTP al servidor
○ → curl https://nrywhite.lat/23197/
Index of /23197/
Index of /23197/
../
lab1/ 10-Feb-2025 02:13 -
top10/ 05-Feb-2025 06:09 -
20250128.txt 29-Jan-2025 03:12 20
(5 puntos) Que pasa si tratan de hacer una solicitud de HTTP desde el servidor hacia su computadora?
○ → curl -v 192.168.0.22
* Trying 192.168.0.22:80...
* connect to 192.168.0.22 port 80 from 172.31.31.175 port 47332 failed: Connection timed out
* Failed to connect to 192.168.0.22 port 80 after 136061 ms: Couldn't connect to server
* Closing connection
curl: (28) Failed to connect to 192.168.0.22 port 80 after 136061 ms: Couldn't connect to server
(10 puntos) Utilizando tail dentro del servidor, obtengan las últimas 15 líneas del archivo /var/log/nginx/access.log
tail -n 15 /var/log/nginx/access.log
108.162.212.22 - - [10/Feb/2025:05:47:48 +0000] "GET / HTTP/1.1" 304 0 "https://nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
108.162.212.22 - - [10/Feb/2025:05:47:50 +0000] "GET / HTTP/1.1" 304 0 "https://nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
108.162.212.177 - - [10/Feb/2025:05:47:51 +0000] "GET / HTTP/1.1" 200 2049 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
108.162.212.177 - - [10/Feb/2025:05:47:57 +0000] "GET / HTTP/1.1" 304 0 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 OPR/116.0.0.0"
172.71.194.88 - - [10/Feb/2025:05:48:49 +0000] "GET /23197/ HTTP/1.1" 200 215 "-" "HTTPie/3.2.2"
172.70.54.35 - - [10/Feb/2025:05:49:27 +0000] "GET / HTTP/1.1" 200 2047 "https://nrywhite.lat/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 OPR/116.0.0.0"
172.70.54.102 - - [10/Feb/2025:05:49:28 +0000] "GET /styles.css?v=2 HTTP/1.1" 200 5047 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 OPR/116.0.0.0"
172.70.34.56 - - [10/Feb/2025:05:49:31 +0000] "GET /23748/ HTTP/1.1" 200 227 "-" "curl/8.5.0"
172.70.54.208 - - [10/Feb/2025:05:49:46 +0000] "GET /23748/ HTTP/1.1" 200 227 "-" "WhatsApp/2.23.20.0"
172.70.54.35 - - [10/Feb/2025:05:49:55 +0000] "GET / HTTP/1.1" 304 0 "https://nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
172.68.245.112 - - [10/Feb/2025:05:50:01 +0000] "GET /23197/ HTTP/1.1" 200 215 "-" "curl/8.5.0"
172.68.76.154 - - [10/Feb/2025:05:50:37 +0000] "GET / HTTP/1.1" 200 2052 "https://nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
172.68.76.154 - - [10/Feb/2025:05:50:37 +0000] "GET /styles.css?v=3 HTTP/1.1" 200 5047 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
172.70.54.165 - - [10/Feb/2025:05:50:42 +0000] "GET / HTTP/1.1" 200 2052 "https://nrywhite.lat/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15"
172.70.255.148 - - [10/Feb/2025:05:50:43 +0000] "GET /styles.css?v=3 HTTP/1.1" 200 5047 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15"
(10 puntos) Utilizando ps y grep identifiquen qué procesos está corriendo amazon dentro del servidor
ps aux | grep amazon
root 526 0.0 1.5 1759296 15560 ? Ssl Feb09 0:02 /snap/amazon-ssm-agent/11092/amazon-ssm-agent
root 955 0.0 2.3 1860804 23108 ? Sl Feb09 0:07 /snap/amazon-ssm-agent/11092/ssm-agent-worker
ubuntu 105514 0.0 0.2 7076 2048 pts/11 S+ 05:54 0:00 grep --color=auto --exclude-dir=.bzr --exclude-dir=CVS --exclude-dir=.git --exclude-dir=.hg --exclude-dir=.svn amazon
(10 puntos) Utilizando dig dentro del servidor, obtengan la ip que resuelve al hacer un dns lookup uvg.edu.gt
dig +short uvg.edu.gt
45.223.155.41
45.223.56.41
(5 puntos) Cuanta memoria RAM, total usada y libre, tiene el servidor? (su respuesta debe estar en MB)
2025-02-10 05:56 ⌚ njs v18.19.1|py |go 16% ip-172-31-31-175 (172.31.31.175) in ~
○ → btop
total = 957 mb, usada = 526 mb , libre =114 mb
(5 puntos) Cuanta espacio de disco, total usado y disponible, tiene el servidor? (su respuesta debe estar en MB)
2025-02-10 05:56 ⌚ njs v18.19.1|py |go 16% ip-172-31-31-175 (172.31.31.175) in ~
○ → btop
total 28000 mb , usada 7450 mb, disponible 20500 mb
(5 puntos) Utilizando el comando ip obtengan la ip del servidor
2025-02-10 06:03 ⌚ njs v18.19.1|py |go 0% ip-172-31-31-175 (172.31.31.175) in ~
○ → ip a
172.31.31.175/
(10 puntos) lsof lista los archivos abiertos. Identifiquen los archivos abiertos por el protocolo TCP en el puerto 80
○ → sudo lsof -iTCP:80
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
nginx 104761 root 5u IPv4 382000 0t0 TCP *:http (LISTEN)
nginx 104761 root 7u IPv6 382002 0t0 TCP *:http (LISTEN)
nginx 104763 www-data 5u IPv4 382000 0t0 TCP *:http (LISTEN)
nginx 104763 www-data 7u IPv6 382002 0t0 TCP *:http (LISTEN)
(20 puntos) Utilizando netstat, listen los puertos por los que está escuchando el servidor. Deben filtrar usando las siguientes opciones de netstat (esto es un solo comando con estas opciones):
tcp
udp
numeric (muestra los puertos por número)
program (muestra qué programa es el que está escuchando)
2025-02-10 06:09 ⌚ njs v18.19.1|py |go 0% ip-172-31-31-175 (172.31.31.175) in ~
○ → sudo netstat -tulnp
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.54:53 0.0.0.0:* LISTEN 301/systemd-resolve
tcp 0 0 0.0.0.0:90 0.0.0.0:* LISTEN 1107/docker-proxy
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 104761/nginx: maste
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 104761/nginx: maste
tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN 301/systemd-resolve
tcp6 0 0 :::10 :::* LISTEN 1/init
tcp6 0 0 :::90 :::* LISTEN 1117/docker-proxy
tcp6 0 0 :::80 :::* LISTEN 104761/nginx: maste
udp 0 0 127.0.0.54:53 0.0.0.0:* 301/systemd-resolve
udp 0 0 127.0.0.53:53 0.0.0.0:* 301/systemd-resolve
udp 0 0 172.31.31.175:68 0.0.0.0:* 465/systemd-network
udp 0 0 127.0.0.1:323 0.0.0.0:* 594/chronyd
udp6 0 0 ::1:323 :::* 594/chronyd