Fernando Rueda - 23748
(20 puntos) Utilizando httpie, hagan una solicitud de HTTP al servidor
HTTP/1.1 200 OK
CF-RAY: 90f9cbf3ed10d630-IAD
Connection: keep-alive
Content-Encoding: br
Content-Type: text/html
Date: Mon, 10 Feb 2025 05:46:04 GMT
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WZUjOjcAVrKg0id%2B8JOgD4KV2adBxACyoyy2d1FbNIxiMZWwkAlovZOAly4ZGptm7caizXHMorqcvsBVUziA40hJJpcvsx8pT%2BZ2ivuQKuDkuJ3trmiHU41XGrku%2FtY%3D"}],"group":"cf-nel","max_age":604800}
Server: cloudflare
Transfer-Encoding: chunked
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
server-timing: cfL4;desc="?proto=TCP&rtt=917&min_rtt=889&rtt_var=389&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3055&recv_bytes=762&delivery_rate=3902964&cwnd=247&unsent_bytes=0&cid=5960a217109a2dcc&ts=23&x=0"
vary: accept-encoding
Index of /23748/
Index of /23748/
../
Laboratorios/ 09-Feb-2025 22:58 -
top10/ 05-Feb-2025 04:59 -
20250128.txt 29-Jan-2025 03:14 18
(10 puntos) Utilizando curl, hagan una solicitud de HTTP al servidor
Index of /23748/
Index of /23748/
../
Laboratorios/ 09-Feb-2025 22:58 -
top10/ 05-Feb-2025 04:59 -
20250128.txt 29-Jan-2025 03:14 18
(10 puntos) Utilizando tail dentro del servidor, obtengan las últimas 15 líneas del archivo /var/log/nginx/access.log
108.162.212.22 - - [10/Feb/2025:05:47:48 +0000] "GET / HTTP/1.1" 304 0 "https://nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
108.162.212.22 - - [10/Feb/2025:05:47:50 +0000] "GET / HTTP/1.1" 304 0 "https://nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
108.162.212.177 - - [10/Feb/2025:05:47:51 +0000] "GET / HTTP/1.1" 200 2049 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
108.162.212.177 - - [10/Feb/2025:05:47:57 +0000] "GET / HTTP/1.1" 304 0 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 OPR/116.0.0.0"
172.71.194.88 - - [10/Feb/2025:05:48:49 +0000] "GET /23197/ HTTP/1.1" 200 215 "-" "HTTPie/3.2.2"
172.70.54.35 - - [10/Feb/2025:05:49:27 +0000] "GET / HTTP/1.1" 200 2047 "https://nrywhite.lat/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 OPR/116.0.0.0"
172.70.54.102 - - [10/Feb/2025:05:49:28 +0000] "GET /styles.css?v=2 HTTP/1.1" 200 5047 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 OPR/116.0.0.0"
172.70.34.56 - - [10/Feb/2025:05:49:31 +0000] "GET /23748/ HTTP/1.1" 200 227 "-" "curl/8.5.0"
172.70.54.208 - - [10/Feb/2025:05:49:46 +0000] "GET /23748/ HTTP/1.1" 200 227 "-" "WhatsApp/2.23.20.0"
172.70.54.35 - - [10/Feb/2025:05:49:55 +0000] "GET / HTTP/1.1" 304 0 "https://nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
172.68.245.112 - - [10/Feb/2025:05:50:01 +0000] "GET /23197/ HTTP/1.1" 200 215 "-" "curl/8.5.0"
172.68.76.154 - - [10/Feb/2025:05:50:37 +0000] "GET / HTTP/1.1" 200 2052 "https://nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
172.68.76.154 - - [10/Feb/2025:05:50:37 +0000] "GET /styles.css?v=3 HTTP/1.1" 200 5047 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
172.70.54.165 - - [10/Feb/2025:05:50:42 +0000] "GET / HTTP/1.1" 200 2052 "https://nrywhite.lat/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15"
172.70.255.148 - - [10/Feb/2025:05:50:43 +0000] "GET /styles.css?v=3 HTTP/1.1" 200 5047 "https://23584.nrywhite.lat/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15"
(10 puntos) Utilizando ps y grep identifiquen qué procesos está corriendo amazon dentro del servidor
root 526 0.0 1.5 1759296 15560 ? Ssl Feb09 0:02 /snap/amazon-ssm-agent/11092/amazon-ssm-agent
root 955 0.0 2.3 1860804 23108 ? Sl Feb09 0:07 /snap/amazon-ssm-agent/11092/ssm-agent-worker
ubuntu 105469 0.0 0.2 7076 2048 pts/3 S+ 05:53 0:00 grep --color=auto --exclude-dir=.bzr --exclude-dir=CVS --exclude-dir=.git --exclude-dir=.hg --exclude-dir=.svn amazon
(10 puntos) Utilizando dig dentro del servidor, obtengan la ip que resuelve al hacer un dns lookup uvg.edu.gt
45.223.56.41
45.223.155.41
(5 puntos) Cuanta memoria RAM, total usada y libre, tiene el servidor? (su respuesta debe estar en MB)
Total: 957 mb
Usado: 543 mb
Libre: 146 mb
(5 puntos) Cuanta espacio de disco, total usado y disponible, tiene el servidor? (su respuesta debe estar en MB)
Total: 28,000 mb
Usado: 7,440 mb
Disponible: 20,560
(5 puntos) Utilizando el comando ip obtengan la ip del servidor
172.31.31.175
(10 puntos) lsof lista los archivos abiertos. Identifiquen los archivos abiertos por el protocolo TCP en el puerto 80
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
nginx 104761 root 5u IPv4 382000 0t0 TCP *:http (LISTEN)
nginx 104761 root 7u IPv6 382002 0t0 TCP *:http (LISTEN)
nginx 104763 www-data 5u IPv4 382000 0t0 TCP *:http (LISTEN)
nginx 104763 www-data 7u IPv6 382002 0t0 TCP *:http (LISTEN)
(20 puntos) Utilizando netstat, listen los puertos por los que está escuchando el servidor. Deben filtrar usando las siguientes opciones de netstat (esto es un solo comando con estas opciones):
tcp
udp
numeric (muestra los puertos por número)
program (muestra qué programa es el que está escuchando)
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.54:53 0.0.0.0:* LISTEN 301/systemd-resolve
tcp 0 0 0.0.0.0:90 0.0.0.0:* LISTEN 1107/docker-proxy
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 104761/nginx: maste
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 104761/nginx: maste
tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN 301/systemd-resolve
tcp6 0 0 :::10 :::* LISTEN 1/init
tcp6 0 0 :::90 :::* LISTEN 1117/docker-proxy
tcp6 0 0 :::80 :::* LISTEN 104761/nginx: maste
udp 0 0 127.0.0.54:53 0.0.0.0:* 301/systemd-resolve
udp 0 0 127.0.0.53:53 0.0.0.0:* 301/systemd-resolve
udp 0 0 172.31.31.175:68 0.0.0.0:* 465/systemd-network
udp 0 0 127.0.0.1:323 0.0.0.0:* 594/chronyd
udp6 0 0 ::1:323 :::* 594/chronyd
(30 puntos) Utilizando ss, listen los puertos por los que está escuchando el servidor. Deben filtrar usando las siguientes opciones de ss (esto es un solo comando con estas opciones):
summary
tcp
conexiones establecidas
resuelvan los puertos numericos
uso de memoria
información interna de tcp
proceso que usa el socket
Total: 262
TCP: 23 (estab 13, closed 2, orphaned 0, timewait 1)
Transport Total IP IPv6
RAW 1 0 1
UDP 5 4 1
TCP 21 9 12
INET 27 13 14
FRAG 0 0 0
State Recv-Q Send-Q Local Address:Port Peer Address:Port Process
ESTAB 0 0 172.31.31.175:443 172.68.245.96:53262
skmem:(r0,rb131072,t0,tb87040,f0,w0,o0,bl0,d0) ts sack cubic wscale:13,7 rto:202 rtt:1.929/0.63 ato:40 mss:1448 pmtu:9001 rcvmss:536 advmss:8949 cwnd:10 bytes_sent:2789 bytes_acked:2789 bytes_received:1121 segs_out:6 segs_in:7 data_segs_out:4 data_segs_in:3 send 60051840bps lastsnd:29556 lastrcv:29556 lastack:29554 pacing_rate 120080336bps delivery_rate 14416920bps delivered:5 app_limited busy:4ms rcv_space:56575 rcv_ssthresh:56575 minrtt:1.607 snd_wnd:65536 tcp-ulp-tls rxconf: none txconf: none
ESTAB 0 0 172.31.31.175:40560 67.220.251.144:443 timer:(keepalive,14sec,0)
skmem:(r0,rb131072,t0,tb87040,f0,w0,o0,bl0,d0) sack cubic wscale:6,7 rto:204 rtt:3.521/1.109 ato:40 mss:1460 pmtu:9001 rcvmss:1460 advmss:8961 cwnd:10 bytes_sent:7355 bytes_acked:7356 bytes_received:9499 segs_out:560 segs_in:458 data_segs_out:116 data_segs_in:120 send 33172394bps lastsnd:15566 lastrcv:15563 lastack:488 pacing_rate 66340072bps delivery_rate 8781952bps delivered:117 app_limited busy:475ms rcv_space:56575 rcv_ssthresh:56575 minrtt:1.33 snd_wnd:59776
ESTAB 0 0 172.31.31.175:443 172.68.245.215:45168
skmem:(r0,rb131072,t0,tb87040,f0,w0,o0,bl0,d0) ts sack cubic wscale:13,7 rto:202 rtt:1.711/0.533 ato:40 mss:1448 pmtu:9001 rcvmss:536 advmss:8949 cwnd:10 bytes_sent:2790 bytes_acked:2790 bytes_received:1122 segs_out:6 segs_in:7 data_segs_out:4 data_segs_in:3 send 67703098bps lastsnd:29461 lastrcv:29462 lastack:29460 pacing_rate 135376520bps delivery_rate 15212080bps delivered:5 app_limited busy:3ms rcv_space:56575 rcv_ssthresh:56575 minrtt:1.523 snd_wnd:65536 tcp-ulp-tls rxconf: none txconf: none
ESTAB 0 0 172.31.31.175:443 172.70.38.112:59600
skmem:(r0,rb131072,t0,tb87040,f0,w0,o0,bl0,d2) ts sack cubic wscale:13,7 rto:202 rtt:1.254/0.475 ato:40 mss:1448 pmtu:9001 rcvmss:536 advmss:8949 cwnd:10 bytes_sent:4706 bytes_acked:4706 bytes_received:1117 segs_out:10 segs_in:9 data_segs_out:6 data_segs_in:3 send 92376396bps lastsnd:65599 lastrcv:65599 lastack:65597 pacing_rate 184660752bps delivery_rate 26737448bps delivered:7 app_limited busy:4ms rcv_space:56575 rcv_ssthresh:56575 minrtt:1.167 snd_wnd:81920 tcp-ulp-tls rxconf: none txconf: none
ESTAB 0 0 [::ffff:172.31.31.175]:10 [::ffff:181.209.195.167]:44129 timer:(keepalive,18min,0)
skmem:(r0,rb131072,t0,tb87040,f0,w0,o0,bl0,d1) ts sack cubic wscale:6,7 rto:277 rtt:76.967/26.268 ato:40 mss:1448 pmtu:9001 rcvmss:1448 advmss:8949 cwnd:10 bytes_sent:5634 bytes_acked:5634 bytes_received:2785 segs_out:30 segs_in:29 data_segs_out:22 data_segs_in:12 send 1505061bps lastsnd:6086652 lastrcv:6086652 lastack:6086588 pacing_rate 3010104bps delivery_rate 1553160bps delivered:23 app_limited busy:951ms rcv_space:56575 rcv_ssthresh:56575 minrtt:58.688 snd_wnd:130944
ESTAB 0 0 [::ffff:172.31.31.175]:10 [::ffff:181.209.151.86]:19066 timer:(keepalive,45min,0)
skmem:(r0,rb1370733,t0,tb87040,f0,w0,o0,bl0,d5) ts sack cubic wscale:7,7 rto:284 rtt:83.972/2.771 ato:41 mss:1448 pmtu:9001 rcvmss:1208 advmss:8949 cwnd:10 ssthresh:10 bytes_sent:632658 bytes_retrans:72 bytes_acked:632586 bytes_received:145322 segs_out:4375 segs_in:4162 data_segs_out:4344 data_segs_in:3898 send 1379507bps lastsnd:4146678 lastrcv:4146678 lastack:4146610 pacing_rate 1655400bps delivery_rate 2838368bps delivered:4343 app_limited busy:82136ms retrans:0/2 rcv_rtt:94808.9 rcv_space:62690 rcv_ssthresh:56575 minrtt:61.33 snd_wnd:173952
ESTAB 0 0 [::ffff:172.31.31.175]:10 [::ffff:181.209.151.86]:23086 timer:(keepalive,82min,0)
skmem:(r0,rb131072,t0,tb87040,f0,w0,o0,bl0,d1) ts sack cubic wscale:7,7 rto:281 rtt:80.061/3.726 ato:40 mss:1448 pmtu:9001 rcvmss:1208 advmss:8949 cwnd:11 ssthresh:11 bytes_sent:49538 bytes_retrans:72 bytes_acked:49466 bytes_received:37234 segs_out:994 segs_in:992 data_segs_out:984 data_segs_in:923 send 1591586bps lastsnd:1614038 lastrcv:1614038 lastack:1613968 pacing_rate 1909880bps delivery_rate 1845120bps delivered:983 app_limited busy:19731ms retrans:0/2 rcv_rtt:67 rcv_space:56575 rcv_ssthresh:56575 minrtt:62.058 snd_wnd:64128
ESTAB 0 0 [::ffff:172.31.31.175]:10 [::ffff:181.209.151.86]:51494 timer:(keepalive,62min,0)
skmem:(r0,rb1133395,t0,tb87040,f0,w0,o0,bl0,d11) ts sack cubic wscale:7,7 rto:280 rtt:79.723/3.347 ato:42 mss:1448 pmtu:9001 rcvmss:1448 advmss:8949 cwnd:15 ssthresh:15 bytes_sent:245846 bytes_retrans:36 bytes_acked:245810 bytes_received:190426 segs_out:5572 segs_in:5730 data_segs_out:5550 data_segs_in:5108 send 2179547bps lastsnd:3276730 lastrcv:3276730 lastack:3276668 pacing_rate 2615448bps delivery_rate 1934560bps delivered:5550 app_limited busy:103069ms retrans:0/1 rcv_rtt:36662.4 rcv_space:62774 rcv_ssthresh:56575 minrtt:57.002 snd_wnd:64128
ESTAB 0 0 [::ffff:172.31.31.175]:10 [::ffff:181.209.152.170]:36788 timer:(keepalive,21sec,4)
skmem:(r0,rb2146159,t0,tb87040,f0,w0,o0,bl0,d86) ts sack cubic wscale:7,7 rto:287 rtt:86.878/8.882 ato:42 mss:1448 pmtu:9001 rcvmss:1448 advmss:8949 cwnd:26 bytes_sent:221318 bytes_acked:221318 bytes_received:136966 segs_out:3941 segs_in:4266 data_segs_out:3874 data_segs_in:3669 send 3466746bps lastsnd:7498526 lastrcv:7498526 lastack:7498448 pacing_rate 6933416bps delivery_rate 2362968bps delivered:3875 app_limited busy:75476ms rcv_rtt:126398 rcv_space:62718 rcv_ssthresh:56575 minrtt:74.049 snd_wnd:64128
ESTAB 0 0 [::ffff:172.31.31.175]:10 [::ffff:181.209.152.170]:48702 timer:(keepalive,18min,0)
skmem:(r0,rb1479686,t0,tb87040,f0,w0,o0,bl0,d177) ts sack cubic wscale:7,7 rto:293 rtt:92.674/6.148 ato:47 mss:1448 pmtu:9001 rcvmss:1448 advmss:8949 cwnd:18 bytes_sent:575846 bytes_acked:575846 bytes_received:351178 segs_out:9731 segs_in:10143 data_segs_out:9607 data_segs_in:9230 send 2249951bps lastsnd:5741196 lastrcv:5741196 lastack:5741123 pacing_rate 4499856bps delivery_rate 2941064bps delivered:9608 app_limited busy:192706ms rcv_rtt:42127.7 rcv_space:77196 rcv_ssthresh:114495 minrtt:72.548 snd_wnd:64128
ESTAB 0 804 [::ffff:172.31.31.175]:10 [::ffff:181.209.151.86]:9567 timer:(on,159ms,0)
skmem:(r0,rb131072,t0,tb87040,f3420,w8868,o0,bl0,d4) ts sack cubic wscale:7,7 rto:279 rtt:78.164/3.236 ato:40 mss:1448 pmtu:9001 rcvmss:1208 advmss:8949 cwnd:10 bytes_sent:16654 bytes_acked:15850 bytes_received:9562 segs_out:203 segs_in:191 data_segs_out:191 data_segs_in:169 send 1482012bps lastrcv:18 lastack:18 pacing_rate 7113576bps delivery_rate 1786016bps delivered:183 app_limited busy:4081ms unacked:9 rcv_space:56575 rcv_ssthresh:56575 minrtt:58.923 snd_wnd:64128
ESTAB 0 0 [::ffff:172.31.31.175]:10 [::ffff:181.174.105.222]:19006 timer:(keepalive,85min,0)
skmem:(r0,rb131072,t0,tb121856,f0,w0,o0,bl0,d0) ts sack cubic wscale:7,7 rto:277 rtt:76.931/1.522 ato:47 mss:1448 pmtu:9001 rcvmss:768 advmss:8949 cwnd:10 bytes_sent:4140058 bytes_retrans:816 bytes_acked:4139242 bytes_received:12902 segs_out:3412 segs_in:1526 data_segs_out:3319 data_segs_in:284 send 1505765bps lastsnd:196280 lastrcv:196708 lastack:196204 pacing_rate 3011504bps delivery_rate 1493360bps delivered:3320 app_limited busy:43281ms retrans:0/1 dsack_dups:1 rcv_space:56575 rcv_ssthresh:56575 minrtt:70.229 snd_wnd:275456
ESTAB 0 0 [::ffff:172.31.31.175]:10 [::ffff:181.174.105.222]:52732 timer:(keepalive,47min,0)
skmem:(r0,rb2144282,t0,tb130560,f0,w0,o0,bl0,d1) ts sack cubic wscale:7,7 rto:266 rtt:65.668/5.887 ato:40 mss:1448 pmtu:9001 rcvmss:1290 advmss:8949 cwnd:10 bytes_sent:1091542 bytes_retrans:280 bytes_acked:1091262 bytes_received:223294 segs_out:12403 segs_in:10763 data_segs_out:12340 data_segs_in:5066 send 1764025bps lastsnd:4364229 lastrcv:4364889 lastack:4364168 pacing_rate 3528008bps delivery_rate 1266352bps delivered:12339 busy:194723ms retrans:0/4 dsack_dups:4 rcv_rtt:348453 rcv_space:67424 rcv_ssthresh:78589 minrtt:56.463 snd_wnd:414208