GeneralInformation

Hostnames	cyanalp.cfd static.212.246.235.167.clients.your-server.de
Domains	cyanalp.cfd your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

WebTechnologies

CDN

PaaS

Reverse proxies

Security

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 4000 5000 6379

1784267576 | 2024-05-05T21:36:47.948880

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBC0+SFHUtOMXMdUe9qa+a3sa
idkKoC+Qzl2rCItn7AjDzAX/EgJuGCrEx2YXiMIlIYDQWL9fZ0yTpv2SoFPcpBQ=
Fingerprint: b4:37:12:45:dc:2d:94:03:8d:eb:c3:4d:54:da:4a:ec

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-04-27T08:44:53.146909

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 27 Apr 2024 08:44:52 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://167.235.246.212/

1229479004 | 2024-05-02T18:43:07.858479

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 02 May 2024 18:43:07 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 213
Connection: keep-alive
x-trace: 9ZpA5Gd9jL
x-envoy-upstream-service-time: 7
x-cache: Hit from cloudfront
via: 1.1 7daf545331a4f565a58e22b0fa952528.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P11
x-amz-cf-id: EAs5JPDT1XBGqmrQ9Km1IWArp7iEQ-4SLiYW_ZJim0b4W1HQcRAIpg==
age: 39
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:15:da:b2:1f:01:73:15:98:ad:e1:57:11:b2:9d:a5:92:f5
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 25 16:48:35 2024 GMT
            Not After : Jun 23 16:48:34 2024 GMT
        Subject: CN=cyanalp.cfd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:97:1a:c3:49:60:ac:a1:81:f1:81:6f:75:76:d6:
                    16:57:2b:2c:f1:b1:d2:ba:8a:9c:a3:39:bf:d8:31:
                    5b:d3:31:c2:9e:37:cf:ff:c9:d8:83:04:e5:97:fb:
                    92:fa:a7:1d:e8:82:5e:22:ef:3c:ee:02:92:b6:ef:
                    f6:8f:60:14:cd:73:10:70:7a:00:27:f2:d6:14:18:
                    4c:21:19:17:a9:b5:b3:6a:f5:4d:73:7b:e5:38:71:
                    0b:05:3a:d4:d3:c1:82:d0:0f:18:e8:db:9b:58:dd:
                    e0:cb:c3:94:ce:33:7d:25:43:33:cb:f8:14:7e:d1:
                    fd:37:b4:ea:cf:46:70:73:19:0f:cf:ce:ec:34:96:
                    a5:ed:48:4a:60:9f:c1:62:4c:77:5e:82:38:f5:aa:
                    b1:d3:f5:16:34:40:ee:c6:43:21:75:8a:26:28:7a:
                    e3:3c:f9:1a:51:76:21:53:aa:7e:97:2d:b8:b3:21:
                    ab:aa:0d:66:ff:17:c0:26:ab:ef:6d:9c:56:a1:a9:
                    e6:df:72:e0:c0:10:1b:72:e2:af:32:24:d5:bd:82:
                    d1:df:9e:22:4c:e8:d7:64:ae:97:66:b4:dc:8f:ea:
                    4e:2f:18:50:65:90:ca:6f:08:26:9a:8a:98:f8:c6:
                    9b:d6:82:7a:0b:39:f2:01:91:72:91:07:41:12:3b:
                    b9:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                78:B4:DE:D4:52:82:DC:DD:20:69:69:54:5E:6A:6C:9F:8A:04:EC:96
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.cyanalp.cfd, DNS:cyanalp.cfd
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Mar 25 17:48:36.060 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B6:F9:87:43:96:E8:FB:AF:E2:C1:0C:
                                D6:E7:7C:10:88:F7:39:2C:18:45:D9:D5:11:B6:14:44:
                                84:80:52:39:0B:02:20:24:81:94:7B:66:0A:F3:1C:A2:
                                84:67:80:88:39:A7:38:28:57:2F:C5:33:FD:1E:4B:34:
                                CA:F2:0A:A5:0D:BD:65
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 25 17:48:36.133 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:92:03:B6:04:B2:FA:93:01:FB:00:AD:
                                F5:53:88:A4:8B:E2:AE:AE:C8:2F:AC:33:38:D9:76:53:
                                6B:07:7E:32:22:02:20:27:5B:0A:C8:7D:D4:20:D6:7A:
                                EB:0C:60:01:29:5F:80:17:45:1F:36:C5:C1:C7:B8:E2:
                                FF:E3:E1:91:86:CD:B4
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        12:ce:8b:97:b6:f3:fd:35:a7:4e:63:ac:98:da:29:a8:4c:5f:
        f8:3f:47:8e:40:48:d5:1d:4b:e9:d2:d7:bc:f8:e0:e4:6e:68:
        6f:94:ca:46:0a:f7:28:8d:26:5e:1d:6b:f9:b8:9a:65:e4:0f:
        60:39:40:81:4b:4c:87:eb:6e:50:95:e9:9c:09:f4:83:37:dc:
        50:1b:3f:27:e9:3c:e9:ca:18:f5:98:e0:95:40:f6:11:6b:59:
        12:af:bd:cf:3e:39:31:2b:3b:8e:00:74:d8:ac:6c:d3:a0:7c:
        74:13:cd:55:cb:6e:18:65:5c:0b:98:b2:29:b6:b7:0f:22:27:
        1c:2f:fd:fe:79:aa:be:75:45:2a:d4:51:f9:b8:ed:40:c9:7d:
        33:5c:df:4e:37:f3:e9:0f:bd:8c:c6:f0:c0:a6:e9:fc:35:3f:
        4c:e1:6a:cc:56:1c:c4:c5:f2:eb:eb:12:93:ae:bc:2f:45:ba:
        72:a7:29:2e:35:0c:bf:c9:e6:17:90:17:bd:ce:2e:e3:f3:a6:
        78:bd:81:01:e6:7f:5c:ad:e3:0e:04:7a:51:95:f1:3f:05:75:
        a9:bd:de:b1:de:fb:d6:83:26:02:99:53:da:d9:82:22:15:f8:
        c7:2a:95:ca:47:ba:ab:40:3f:c7:8f:9a:1e:9c:7e:85:52:79:
        a4:d1:20:63

-1108961142 | 2024-05-01T04:08:54.527688

3000 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=utf-8
content-length: 213
date: Wed, 01 May 2024 04:08:43 GMT
x-trace: 1pPWHgiR0P
server: envoy
x-envoy-upstream-service-time: 9
x-cache: Hit from cloudfront
via: 1.1 7daf545331a4f565a58e22b0fa952528.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P11
x-amz-cf-id: pNjHalvKyjkVZcItLwpJf8PQbbbRHaJRCDar9xOhzNWGMUXGZf1TPw==
age: 11
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

-1246004407 | 2024-05-06T10:56:54.535747

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-1227578888 | 2024-05-09T05:01:29.735551

5000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 1055168
ETag: W/"1019c0-ff5F+WN+2EjDn205p7L2tbprcLM"
Date: Thu, 09 May 2024 05:01:08 GMT
Connection: keep-alive
Keep-Alive: timeout=5

1427950271 | 2024-05-05T17:03:52.065299

6379 / tcp

# Server
redis_version:7.2.4
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:c83386883e383d1a
redis_mode:standalone
os:Linux 5.15.0-100-generic aarch64
arch_bits:64
monotonic_clock:POSIX clock_gettime
multiplexing_api:epoll
atomicvar_api:c11-builtin
gcc_version:12.2.0
process_id:1
process_supervised:no
run_id:5f09a165361246cf07ea4bdf4416a5849c74d442
tcp_port:6379
server_time_usec:1714928631476283
uptime_in_seconds:3539493
uptime_in_days:40
hz:10
configured_hz:10
lru_clock:3652599
executable:/data/redis-server
config_file:
io_threads_active:0
listener0:name=tcp,bind=*,bind=-::*,port=6379

# Clients
connected_clients:3
cluster_connections:0
maxclients:10000
client_recent_max_input_buffer:8
client_recent_max_output_buffer:0
blocked_clients:0
tracking_clients:0
clients_in_timeout_table:0
total_blocking_keys:0
total_blocking_keys_on_nokey:0

# Memory
used_memory:12988856
used_memory_human:12.39M
used_memory_rss:39194624
used_memory_rss_human:37.38M
used_memory_peak:268594360
used_memory_peak_human:256.15M
used_memory_peak_perc:4.84%
used_memory_overhead:2586416
used_memory_startup:898664
used_memory_dataset:10402440
used_memory_dataset_perc:86.04%
allocator_allocated:13314840
allocator_active:34537472
allocator_resident:38207488
total_system_memory:8113700864
total_system_memory_human:7.56G
used_memory_lua:1028096
used_memory_vm_eval:1028096
used_memory_lua_human:1004.00K
used_memory_scripts_eval:1035256
number_of_cached_scripts:501
number_of_functions:0
number_of_libraries:0
used_memory_vm_functions:32768
used_memory_vm_total:1060864
used_memory_vm_total_human:1.01M
used_memory_functions:184
used_memory_scripts:1035440
used_memory_scripts_human:1011.17K
maxmemory:268435456
maxmemory_human:256.00M
maxmemory_policy:allkeys-lru
allocator_frag_ratio:2.59
allocator_frag_bytes:21222632
allocator_rss_ratio:1.11
allocator_rss_bytes:3670016
rss_overhead_ratio:1.03
rss_overhead_bytes:987136
mem_fragmentation_ratio:3.02
mem_fragmentation_bytes:26228064
mem_not_counted_for_evict:0
mem_replication_backlog:0
mem_total_replication_buffers:0
mem_clients_slaves:0
mem_clients_normal:21144
mem_cluster_links:0
mem_aof_buffer:0
mem_allocator:jemalloc-5.3.0
active_defrag_running:0
lazyfree_pending_objects:0
lazyfreed_objects:0

# Persistence
loading:0
async_loading:0
current_cow_peak:0
current_cow_size:0
current_cow_size_age:0
current_fork_perc:0.00
current_save_keys_processed:0
current_save_keys_total:0
rdb_changes_since_last_save:301651
rdb_bgsave_in_progress:0
rdb_last_save_time:1714376340
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:-1
rdb_current_bgsave_time_sec:-1
rdb_saves:229
rdb_last_cow_size:0
rdb_last_load_keys_expired:0
rdb_last_load_keys_loaded:0
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok
aof_rewrites:0
aof_rewrites_consecutive_failures:0
aof_last_write_status:ok
aof_last_cow_size:0
module_fork_in_progress:0
module_fork_last_cow_size:0

# Stats
total_connections_received:1421
total_commands_processed:33000487
instantaneous_ops_per_sec:0
total_net_input_bytes:17599010233
total_net_output_bytes:1993566246
total_net_repl_input_bytes:26860616
total_net_repl_output_bytes:0
instantaneous_input_kbps:0.00
instantaneous_output_kbps:0.00
instantaneous_input_repl_kbps:0.00
instantaneous_output_repl_kbps:0.00
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:979288
expired_stale_perc:0.00
expired_time_cap_reached_count:0
expire_cycle_cpu_milliseconds:451169
evicted_keys:6918370
evicted_clients:0
total_eviction_exceeded_time:4
current_eviction_exceeded_time:0
keyspace_hits:1881360
keyspace_misses:20774950
pubsub_channels:0
pubsub_patterns:0
pubsubshard_channels:0
latest_fork_usec:0
total_forks:0
migrate_cached_sockets:0
slave_expires_tracked_keys:0
active_defrag_hits:0
active_defrag_misses:0
active_defrag_key_hits:0
active_defrag_key_misses:0
total_active_defrag_time:0
current_active_defrag_time:0
tracking_total_keys:0
tracking_total_items:0
tracking_total_prefixes:0
unexpected_error_replies:0
total_error_replies:6269
dump_payload_sanitizations:0
total_reads_processed:7123231
total_writes_processed:7130497
io_threaded_reads_processed:0
io_threaded_writes_processed:0
reply_buffer_shrinks:28490
reply_buffer_expands:39930
eventloop_cycles:42364159
eventloop_duration_sum:7866284502
eventloop_duration_cmd_sum:76927537
instantaneous_eventloop_cycles_per_sec:9
instantaneous_eventloop_duration_usec:241
acl_access_denied_auth:0
acl_access_denied_cmd:0
acl_access_denied_key:0
acl_access_denied_channel:0

# Replication
role:master
connected_slaves:0
master_failover_state:no-failover
master_replid:512ca4d711b382f8e6c3d147439214ac7e65221b
master_replid2:ffa88403ce41e02d411aa842ac6ac014a5083091
master_repl_offset:0
second_repl_offset:1
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:4219.068332
used_cpu_user:5068.081807
used_cpu_sys_children:0.000000
used_cpu_user_children:0.004786
used_cpu_sys_main_thread:4218.024346
used_cpu_user_main_thread:5067.649593

# Modules

# Errorstats
errorstat_ERR:count=6269

# Cluster
cluster_enabled:0

# Keyspace
db0:keys=5766,expires=5766,avg_ttl=19364753

# Keys
# NOTE: more keys available in the database
VDQTvmiOh9BZSr3ZOGZCOETzFzGrCU6D_0KejTY_no4
AYYgMaqIrscuxgsGU-J0aguXQ3S1q2M9VdT8A7wfIbw
XvVYgSMiSxq59lSDFfw1IQXR1KFOYlG4U8CEv2YExpQ
S_e31aygg_fZ70YHRqEZMBCChNOEUTq0UzbQM95C-g0
ZpETl-mLr4Gdae_P0IjlvBQaXlMJgbpXlXVN01jpY4o
iqp1Cu12JhMIzYLRqaC53yiD-SHQCwuCbWC0eBD4-f8
#|LVQwjdU88JMkemfd4K3MJ_7cey0K-uCv9uTG4jogiEMX2Z85OPLLex8JI_0OP2wc
IHJV3vingqaano3efWkzPakqOEDDAi28jh8FENAKN0M
bJ6mVX6Ygv3c2egLSous3OohzBid5j3YiVnUEOlAV00
ErQQlzgRDXr3kyobCXT6xVCcmU4MHZ8V9e0SlK6Z5DU

# Connected Clients
id=3 addr=172.19.0.4:59644 laddr=172.19.0.2:6379 fd=8 name= age=3539488 idle=39 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=4 addr=172.19.0.4:59650 laddr=172.19.0.2:6379 fd=9 name= age=3539488 idle=38 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=1920 addr=224.66.63.68:59678 laddr=172.19.0.2:6379 fd=10 name= age=0 idle=0 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=26 qbuf-free=20448 argv-mem=10 multi-mem=0 rbs=6144 rbp=5505 obl=0 oll=0 omem=0 tot-mem=27546 events=r cmd=client|list user=default redir=-1 resp=2 lib-name= lib-ver=

167.235.246.212

Last Seen: 2024-05-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1784267576 | 2024-05-05T21:36:47.948880
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-04-27T08:44:53.146909
80 / tcp

nginx1.18.0

1229479004 | 2024-05-02T18:43:07.858479
443 / tcp

nginx1.18.0

-1108961142 | 2024-05-01T04:08:54.527688
3000 / tcp

-1246004407 | 2024-05-06T10:56:54.535747
4000 / tcp

-1227578888 | 2024-05-09T05:01:29.735551
5000 / tcp

1427950271 | 2024-05-05T17:03:52.065299
6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

167.235.246.212

Last Seen: 2024-05-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1784267576 | 2024-05-05T21:36:47.948880 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-04-27T08:44:53.146909 80 / tcp

nginx1.18.0

1229479004 | 2024-05-02T18:43:07.858479 443 / tcp

nginx1.18.0

-1108961142 | 2024-05-01T04:08:54.527688 3000 / tcp

-1246004407 | 2024-05-06T10:56:54.535747 4000 / tcp

-1227578888 | 2024-05-09T05:01:29.735551 5000 / tcp

1427950271 | 2024-05-05T17:03:52.065299 6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

1784267576 | 2024-05-05T21:36:47.948880
22 / tcp

589765266 | 2024-04-27T08:44:53.146909
80 / tcp

1229479004 | 2024-05-02T18:43:07.858479
443 / tcp

-1108961142 | 2024-05-01T04:08:54.527688
3000 / tcp

-1246004407 | 2024-05-06T10:56:54.535747
4000 / tcp

-1227578888 | 2024-05-09T05:01:29.735551
5000 / tcp

1427950271 | 2024-05-05T17:03:52.065299
6379 / tcp