GeneralInformation

Hostnames	rnodescrns.online
Domains	rnodescrns.online
Country	United States
City	Draper
Organization	Fiberstate LLC
ISP	FiberState, LLC
ASN	AS26042
Operating System	Ubuntu

WebTechnologies

CDN

PaaS

Reverse proxies

Security

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 4000 5000 6379

1519013271 | 2024-04-23T15:36:43.701945

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBAvaWRJOAKxRHSU5D3tlReKO
IOwd1oFbKQ7OI9JgJh9atK1eEL4CG7mQHsjJKfJSy7qKlpGTofP0GuQR5O+fmKA=
Fingerprint: de:27:f9:67:bb:48:67:1c:c4:6f:ac:29:2c:45:24:0a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-08T13:23:49.372016

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 13:23:49 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://38.46.221.103/

-879564941 | 2024-05-08T13:23:52.752945

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 13:23:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 213
Connection: keep-alive
x-trace: eFE0l47Ye6
x-envoy-upstream-service-time: 107
x-cache: Miss from cloudfront
via: 1.1 7ebf86def0385a427d4375fd043f4f94.cloudfront.net (CloudFront)
x-amz-cf-pop: SFO53-P5
x-amz-cf-id: VLnL_EZO-BIRvUdRJ31Vm0BuZKDBNJXmej3-ANuPbQqW7J2Swnu0ZA==
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:67:99:1a:07:54:ea:97:60:35:11:cb:37:ce:8e:a5:65:0a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  1 01:51:40 2024 GMT
            Not After : Jun 30 01:51:39 2024 GMT
        Subject: CN=rnodescrns.online
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:c0:55:7d:54:91:c6:fa:0b:da:de:4e:e5:f4:e2:
                    d1:04:d4:dd:1b:f5:79:f1:82:8a:78:70:cd:3d:46:
                    07:03:f8:ff:21:36:df:ef:53:7a:9a:75:e3:44:87:
                    71:65:ad:aa:09:26:99:2f:2b:05:19:7c:12:94:05:
                    b5:d2:33:9d:33
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                36:DE:F6:22:1E:02:20:C3:70:5F:FB:EF:6F:9F:27:52:C7:CF:E5:B7
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.rnodescrns.online, DNS:rnodescrns.online
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr  1 02:51:40.539 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:2F:94:78:1E:4F:A4:22:A5:29:4C:B0:2F:
                                66:53:D4:53:D0:F5:F1:3B:F1:66:B0:ED:9B:46:97:3F:
                                76:85:19:9B:02:20:10:AD:64:FE:0A:13:90:2D:AA:EA:
                                04:80:21:25:1F:5E:DF:58:3B:BA:85:87:C7:4C:E9:80:
                                77:65:29:B4:F8:2F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Apr  1 02:51:40.767 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:96:B5:EA:A9:8B:26:84:1B:28:44:81:
                                F7:83:02:7F:73:37:B1:4A:82:9D:7D:64:B7:7A:F3:B3:
                                2B:EE:49:DB:E7:02:20:65:79:0A:32:83:23:D1:ED:AD:
                                53:B7:A0:30:EE:57:B4:16:24:24:44:A5:ED:45:25:05:
                                FC:BD:52:65:10:32:6D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        40:8c:4b:b0:54:2a:91:9d:9e:75:e6:79:c5:77:e3:50:53:47:
        03:1b:7a:08:45:ee:9b:ce:24:a1:58:f2:c8:fa:2d:a4:70:7f:
        95:90:a6:84:e0:34:af:bd:63:35:53:16:bb:02:88:47:21:02:
        72:c6:dc:6a:95:56:20:0c:7f:2f:58:e6:54:be:69:8c:fd:f5:
        da:3e:1d:65:79:6f:b2:55:30:74:dc:1b:b7:63:ca:f6:5e:25:
        00:93:13:0f:8b:0b:65:91:20:4d:16:30:d3:60:e3:a4:b6:c5:
        83:db:c0:c1:a2:fd:aa:9f:72:e9:f7:89:5a:89:c1:fa:49:d6:
        3b:c3:d7:c7:c9:d5:de:d3:a4:e2:2f:15:e2:94:f6:db:c9:f8:
        82:70:53:6f:48:64:7d:82:49:d7:90:ac:0c:24:59:b9:3d:c8:
        0d:0f:46:e7:ba:14:71:1d:69:c8:c2:4c:77:88:57:7e:48:98:
        54:86:58:5b:ca:4c:e8:d5:c8:e9:4a:d1:a5:05:0c:82:81:e0:
        bf:af:0a:6b:10:37:77:16:99:66:29:9a:03:6b:ee:e5:76:89:
        7e:c6:80:f7:97:21:03:bd:6a:58:6f:8b:8d:72:ad:93:fe:c7:
        27:31:c5:28:9f:08:ed:e5:6b:52:d6:b9:e3:19:5a:05:10:72:
        f3:15:2c:28

1312584240 | 2024-05-08T07:38:27.642341

3000 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=utf-8
content-length: 213
date: Wed, 08 May 2024 07:36:50 GMT
x-trace: vZ9KgXckTI
server: envoy
x-envoy-upstream-service-time: 44
x-cache: Hit from cloudfront
via: 1.1 83ab40239b11e32cffeba9294e53c0fe.cloudfront.net (CloudFront)
x-amz-cf-pop: LAX50-P1
x-amz-cf-id: BTeC4hVHr1UvFI9vswyAxuQzOLHC0vhG_Ze7sF4wNXOOKF8y9OiK-Q==
age: 97
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

-1246004407 | 2024-05-04T02:01:16.767735

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

136544665 | 2024-05-06T22:43:34.611903

5000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 1233998
ETag: W/"12d44e-t/7TgVIc6B/9SKam5c8jIDDcXII"
Date: Mon, 06 May 2024 22:43:34 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-127487639 | 2024-05-07T18:23:54.829677

6379 / tcp

# Server
redis_version:7.2.4
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:7c3cbaf27e881543
redis_mode:standalone
os:Linux 5.15.0-91-generic x86_64
arch_bits:64
monotonic_clock:POSIX clock_gettime
multiplexing_api:epoll
atomicvar_api:c11-builtin
gcc_version:12.2.0
process_id:1
process_supervised:no
run_id:b45e3b6827464a3f933eeb482286965cfbed108e
tcp_port:6379
server_time_usec:1715106234524170
uptime_in_seconds:1357744
uptime_in_days:15
hz:10
configured_hz:10
lru_clock:3830202
executable:/data/redis-server
config_file:
io_threads_active:0
listener0:name=tcp,bind=*,bind=-::*,port=6379

# Clients
connected_clients:3
cluster_connections:0
maxclients:10000
client_recent_max_input_buffer:8
client_recent_max_output_buffer:0
blocked_clients:0
tracking_clients:0
clients_in_timeout_table:0
total_blocking_keys:0
total_blocking_keys_on_nokey:0

# Memory
used_memory:2252936
used_memory_human:2.15M
used_memory_rss:16072704
used_memory_rss_human:15.33M
used_memory_peak:268569864
used_memory_peak_human:256.13M
used_memory_peak_perc:0.84%
used_memory_overhead:1081184
used_memory_startup:865896
used_memory_dataset:1171752
used_memory_dataset_perc:84.48%
allocator_allocated:2358920
allocator_active:3964928
allocator_resident:10395648
total_system_memory:33467224064
total_system_memory_human:31.17G
used_memory_lua:185344
used_memory_vm_eval:185344
used_memory_lua_human:181.00K
used_memory_scripts_eval:178512
number_of_cached_scripts:86
number_of_functions:0
number_of_libraries:0
used_memory_vm_functions:32768
used_memory_vm_total:218112
used_memory_vm_total_human:213.00K
used_memory_functions:184
used_memory_scripts:178696
used_memory_scripts_human:174.51K
maxmemory:268435456
maxmemory_human:256.00M
maxmemory_policy:allkeys-lru
allocator_frag_ratio:1.68
allocator_frag_bytes:1606008
allocator_rss_ratio:2.62
allocator_rss_bytes:6430720
rss_overhead_ratio:1.55
rss_overhead_bytes:5677056
mem_fragmentation_ratio:7.26
mem_fragmentation_bytes:13859816
mem_not_counted_for_evict:0
mem_replication_backlog:0
mem_total_replication_buffers:0
mem_clients_slaves:0
mem_clients_normal:3856
mem_cluster_links:0
mem_aof_buffer:0
mem_allocator:jemalloc-5.3.0
active_defrag_running:0
lazyfree_pending_objects:0
lazyfreed_objects:0

# Persistence
loading:0
async_loading:0
current_cow_peak:0
current_cow_size:0
current_cow_size_age:0
current_fork_perc:0.00
current_save_keys_processed:0
current_save_keys_total:0
rdb_changes_since_last_save:381
rdb_bgsave_in_progress:0
rdb_last_save_time:1715103399
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:-1
rdb_current_bgsave_time_sec:-1
rdb_saves:1188
rdb_last_cow_size:0
rdb_last_load_keys_expired:0
rdb_last_load_keys_loaded:0
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok
aof_rewrites:0
aof_rewrites_consecutive_failures:0
aof_last_write_status:ok
aof_last_cow_size:0
module_fork_in_progress:0
module_fork_last_cow_size:0

# Stats
total_connections_received:801
total_commands_processed:6997651
instantaneous_ops_per_sec:0
total_net_input_bytes:3399447415
total_net_output_bytes:510210351
total_net_repl_input_bytes:7441984
total_net_repl_output_bytes:0
instantaneous_input_kbps:0.00
instantaneous_output_kbps:0.00
instantaneous_input_repl_kbps:0.00
instantaneous_output_repl_kbps:0.00
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:0
expired_stale_perc:0.00
expired_time_cap_reached_count:0
expire_cycle_cpu_milliseconds:110589
evicted_keys:269938
evicted_clients:0
total_eviction_exceeded_time:0
current_eviction_exceeded_time:0
keyspace_hits:428643
keyspace_misses:4556277
pubsub_channels:0
pubsub_patterns:0
pubsubshard_channels:0
latest_fork_usec:0
total_forks:0
migrate_cached_sockets:0
slave_expires_tracked_keys:0
active_defrag_hits:0
active_defrag_misses:0
active_defrag_key_hits:0
active_defrag_key_misses:0
total_active_defrag_time:0
current_active_defrag_time:0
tracking_total_keys:0
tracking_total_items:0
tracking_total_prefixes:0
unexpected_error_replies:0
total_error_replies:3055
dump_payload_sanitizations:0
total_reads_processed:2157084
total_writes_processed:2158987
io_threaded_reads_processed:0
io_threaded_writes_processed:0
reply_buffer_shrinks:4959
reply_buffer_expands:5994
eventloop_cycles:15660005
eventloop_duration_sum:3255231336
eventloop_duration_cmd_sum:54782862
instantaneous_eventloop_cycles_per_sec:9
instantaneous_eventloop_duration_usec:229
acl_access_denied_auth:0
acl_access_denied_cmd:0
acl_access_denied_key:0
acl_access_denied_channel:0

# Replication
role:master
connected_slaves:0
master_failover_state:no-failover
master_replid:67cc8d700f7c23a3b012b9ad3c53ffa8a676bdc2
master_replid2:e403d2f7953c335bc053e3903cfd9a0d3b1fbca3
master_repl_offset:0
second_repl_offset:1
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:1701.861547
used_cpu_user:2235.202487
used_cpu_sys_children:0.000000
used_cpu_user_children:0.003027
used_cpu_sys_main_thread:1701.459714
used_cpu_user_main_thread:2234.919217

# Modules

# Errorstats
errorstat_ERR:count=2891
errorstat_READONLY:count=164

# Cluster
cluster_enabled:0

# Keyspace
db0:keys=385,expires=381,avg_ttl=27445006

# Keys
# NOTE: more keys available in the database
0vaDFxD4qyJ9umnJnXS6c7hvZBW8n1XYwefA0-Pmqc0
8LmhV0igbT_asSPJiJH5Jiawm7Mw1-292mABSwj4Sy4
qBGvpJMYRHHE8d_HPxZFeTbSpScGRpi6swZwJXJj7D4
sFvNx-RkyiqR36GhRKy50tQ1fIBsq_A4Kpalbui6G20
#|1XjFRWXVSXf7BaaqtTqPzzXgZ60KuKJTO2j-ZukqlOHe1ilNxtr6Ue-PHV-4uJoG
HV-VOqaAgTm8CyQGG0N3XfScE7VzOncO37R8B_2NOJg
MTK_wt0Q3DP4bTOtObYDdNJ2qSsctG-7umwigF2pib0
El-ksmwWHovajf03eI0XfzwTNcBA80VNVLgyNaCYIj0
ZM77QWwDf4b4bMh2zvkgWpM7u3waJExu0ZiuoYsbnP0
yfKoCTygbBb4w0PXctnrvPIgJaFb8CbiMlyXJttLJ5U
0oGHGz1_TzZUVdnq6YEcmn07o_sK328UTjuBJU8nP4Q

# Connected Clients
id=3 addr=172.19.0.5:44730 laddr=172.19.0.2:6379 fd=8 name= age=1357740 idle=54 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=4 addr=172.19.0.5:44734 laddr=172.19.0.2:6379 fd=9 name= age=1357740 idle=54 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=885 addr=224.245.27.75:58944 laddr=172.19.0.2:6379 fd=10 name= age=0 idle=0 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=26 qbuf-free=20448 argv-mem=10 multi-mem=0 rbs=1024 rbp=591 obl=0 oll=0 omem=0 tot-mem=22426 events=r cmd=client|list user=default redir=-1 resp=2 lib-name= lib-ver=

38.46.221.103

Last Seen: 2024-05-08

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1519013271 | 2024-04-23T15:36:43.701945
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-08T13:23:49.372016
80 / tcp

nginx1.18.0

-879564941 | 2024-05-08T13:23:52.752945
443 / tcp

nginx1.18.0

1312584240 | 2024-05-08T07:38:27.642341
3000 / tcp

-1246004407 | 2024-05-04T02:01:16.767735
4000 / tcp

136544665 | 2024-05-06T22:43:34.611903
5000 / tcp

-127487639 | 2024-05-07T18:23:54.829677
6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

38.46.221.103

Last Seen: 2024-05-08

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1519013271 | 2024-04-23T15:36:43.701945 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-08T13:23:49.372016 80 / tcp

nginx1.18.0

-879564941 | 2024-05-08T13:23:52.752945 443 / tcp

nginx1.18.0

1312584240 | 2024-05-08T07:38:27.642341 3000 / tcp

-1246004407 | 2024-05-04T02:01:16.767735 4000 / tcp

136544665 | 2024-05-06T22:43:34.611903 5000 / tcp

-127487639 | 2024-05-07T18:23:54.829677 6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

1519013271 | 2024-04-23T15:36:43.701945
22 / tcp

589765266 | 2024-05-08T13:23:49.372016
80 / tcp

-879564941 | 2024-05-08T13:23:52.752945
443 / tcp

1312584240 | 2024-05-08T07:38:27.642341
3000 / tcp

-1246004407 | 2024-05-04T02:01:16.767735
4000 / tcp

136544665 | 2024-05-06T22:43:34.611903
5000 / tcp

-127487639 | 2024-05-07T18:23:54.829677
6379 / tcp