GeneralInformation

Hostnames	arnode.cfd static.128.155.21.65.clients.your-server.de
Domains	arnode.cfd your-server.de
Country	Finland
City	Helsinki
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Linux 5.15.0-92-generic x86_64

WebTechnologies

CDN

PaaS

Reverse proxies

Security

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 4000 5000 6379 8545

-708207476 | 2024-05-01T21:00:13.369693

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBB0a5mXvgdrtzgdauFrJcuyk
eg7FWO26qqrd5hM7YD4W3xR45lJxAC2bQH2lI5ohiVaXH4782bE2NewCrs5PnmE=
Fingerprint: 98:59:5a:fd:84:f8:b7:02:dd:47:d0:98:c3:f0:62:f1

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-30T06:33:45.936112

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 30 Apr 2024 06:33:45 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sun, 21 Jan 2024 15:32:13 GMT
Connection: keep-alive
ETag: "65ad38fd-264"
Accept-Ranges: bytes

2085311893 | 2024-05-06T01:58:00.172408

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 06 May 2024 01:58:00 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 213
Connection: keep-alive
x-trace: oPJy7hWc1J
x-envoy-upstream-service-time: 2
x-cache: Hit from cloudfront
via: 1.1 837bfbe95037e42cdc86bcbd263354ea.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P2
x-amz-cf-id: Dktn5GzMnBa7BT9PLY0xf3KxL5SwSHMWHS4RRXSiqX8Sq5BUG9oqCQ==
age: 117
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:9c:df:a4:e5:85:30:37:3e:36:a1:d6:9c:a8:f4:3f:75:41
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 18 01:43:34 2024 GMT
            Not After : Jul 17 01:43:33 2024 GMT
        Subject: CN=arnode.cfd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b8:81:11:94:e6:8e:61:b6:d3:07:2b:e3:0d:92:
                    7b:f5:d4:84:c7:11:c6:57:7e:6e:9f:a4:78:40:18:
                    20:81:95:b1:c1:af:b7:5f:8f:3b:dc:bd:9c:ca:f2:
                    25:92:3c:34:ab:28:78:87:7d:4e:6b:6c:5a:5d:e8:
                    d9:4c:7d:e2:0f:0c:bd:6a:32:03:30:37:0a:b0:f2:
                    49:a2:cf:61:05:43:0d:35:0f:94:12:fa:cb:e0:a5:
                    c5:2c:22:b0:8e:87:f9:70:2a:43:df:0e:bd:e0:e5:
                    e9:6f:57:84:d2:6b:dc:8f:eb:f2:67:b9:e1:e4:b0:
                    2d:9b:a7:25:ef:95:0b:78:32:2e:84:49:b4:28:5b:
                    68:b5:09:84:17:0d:aa:43:12:5f:4e:94:b9:ea:da:
                    4d:2f:e3:c4:43:4d:f6:4f:a3:4a:d8:ef:9a:02:22:
                    06:57:e5:49:ae:e5:82:5d:d6:17:28:72:f5:53:03:
                    b0:52:ef:35:03:bd:e9:95:44:c5:33:46:c8:4e:03:
                    76:13:29:00:64:5d:b3:be:eb:42:a0:1b:2d:7b:43:
                    14:22:15:26:d7:75:c0:1d:6e:4d:d7:52:b6:11:d6:
                    c8:51:67:7d:9d:b1:0d:36:4d:25:73:cc:34:61:e7:
                    14:7b:4a:5b:cc:75:a0:c6:76:2c:1b:79:f6:b3:15:
                    d0:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8A:56:8C:35:68:5F:02:1B:01:A5:0C:51:4C:0A:16:D7:65:79:8F:C7
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.arnode.cfd, DNS:arnode.cfd
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 18 02:43:34.686 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:37:95:B8:F3:E2:20:8C:3F:4C:04:CB:24:
                                16:81:4A:1A:A9:42:0E:36:1E:B8:CE:E8:A1:A1:29:B7:
                                97:CE:74:7F:02:20:23:61:80:1C:4C:F0:86:D6:E8:B9:
                                CC:65:71:8B:5C:64:B6:E3:9A:37:DB:E0:9F:EF:1C:EF:
                                2F:79:7D:E7:FE:A0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr 18 02:43:34.944 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:13:3E:9A:5E:1B:EC:D6:E2:DF:14:C6:FC:
                                28:2B:D7:F6:12:3B:63:69:36:5B:95:33:3E:DF:38:7F:
                                38:93:E7:97:02:21:00:E8:D2:FB:2E:6A:DC:7D:F9:5E:
                                28:39:A0:51:8C:D3:89:30:32:1E:AB:F7:3D:93:00:9D:
                                EF:FA:88:2D:9E:22:6C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        93:ba:0c:61:b4:29:df:1d:fc:c6:2a:1c:96:17:a7:ec:5c:f7:
        e7:56:dd:e6:ee:7f:f7:a0:99:d9:5c:73:5a:61:7b:d5:b8:c1:
        6c:47:d3:0d:20:b7:9f:d9:47:4e:2a:18:34:21:5c:d0:46:d2:
        d5:f4:d6:b8:bc:cb:20:3b:8b:d0:07:e0:4d:2f:a6:d5:c9:6b:
        02:d7:d8:f9:b0:56:2f:1d:d5:fa:f9:f6:53:be:c9:0c:71:7f:
        ef:8a:ac:67:45:12:f8:cb:ac:80:56:d0:08:08:9a:e5:25:6d:
        0b:a6:a3:1b:44:dc:37:08:a1:18:4b:eb:21:6c:f8:f8:1a:57:
        37:ad:3d:d0:27:07:54:50:b0:ba:c9:fc:24:c6:eb:7b:a6:79:
        49:6a:5c:6f:71:08:70:e6:20:29:bc:c4:31:47:b8:eb:fd:c0:
        e0:82:01:3c:17:61:de:8c:15:46:2c:44:dd:e2:3b:ec:56:ae:
        d9:e1:f0:c3:ba:5d:3a:30:1f:0d:e8:ca:05:71:e3:b5:e6:d4:
        ca:50:92:8d:75:a3:cd:3c:fc:7b:fd:73:ea:e3:1d:6e:f0:7e:
        f7:01:9b:b8:11:06:25:5b:b7:7a:02:b2:9e:3d:cf:92:25:3a:
        e8:ce:4b:40:fb:6f:6e:8b:2f:a2:e0:97:73:08:ba:0c:01:9d:
        3d:6d:4b:0e

1504788702 | 2024-04-28T02:33:26.756350

3000 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=utf-8
content-length: 213
date: Sun, 28 Apr 2024 02:31:50 GMT
x-trace: Nay7e9JYce
server: envoy
x-envoy-upstream-service-time: 3
x-cache: Hit from cloudfront
via: 1.1 f787497c3293bf173c5253671d0f4cfa.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P3
x-amz-cf-id: TaCuF9gPylTcGnh3Oyg5LGBtBRrOSI7NlkfNg7AO_iN1HgNNTM7ysw==
age: 96
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

-1246004407 | 2024-05-06T09:49:02.837618

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-1146199753 | 2024-05-04T23:33:16.481594

5000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 1266695
ETag: W/"135407-FFgsqH2UL+KBYbbUksvuLso087g"
Date: Sat, 04 May 2024 23:33:14 GMT
Connection: keep-alive
Keep-Alive: timeout=5

894516557 | 2024-05-09T08:50:13.490953

6379 / tcp

# Server
redis_version:7.2.4
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:a1619e5314b0932f
redis_mode:standalone
os:Linux 5.15.0-92-generic x86_64
arch_bits:64
monotonic_clock:POSIX clock_gettime
multiplexing_api:epoll
atomicvar_api:c11-builtin
gcc_version:12.2.0
process_id:1
process_supervised:no
run_id:55dfd8b70347a5d7a6b09f89bc2523aa02fd581f
tcp_port:6379
server_time_usec:1715244612890266
uptime_in_seconds:2387918
uptime_in_days:27
hz:10
configured_hz:10
lru_clock:3968580
executable:/data/redis-server
config_file:
io_threads_active:0
listener0:name=tcp,bind=*,bind=-::*,port=6379

# Clients
connected_clients:3
cluster_connections:0
maxclients:10000
client_recent_max_input_buffer:8
client_recent_max_output_buffer:0
blocked_clients:0
tracking_clients:0
clients_in_timeout_table:0
total_blocking_keys:0
total_blocking_keys_on_nokey:0

# Memory
used_memory:1557000
used_memory_human:1.48M
used_memory_rss:7749632
used_memory_rss_human:7.39M
used_memory_peak:86181344
used_memory_peak_human:82.19M
used_memory_peak_perc:1.81%
used_memory_overhead:926728
used_memory_startup:865896
used_memory_dataset:630272
used_memory_dataset_perc:91.20%
allocator_allocated:1897936
allocator_active:3350528
allocator_resident:7282688
total_system_memory:8123871232
total_system_memory_human:7.57G
used_memory_lua:113664
used_memory_vm_eval:113664
used_memory_lua_human:111.00K
used_memory_scripts_eval:55224
number_of_cached_scripts:29
number_of_functions:0
number_of_libraries:0
used_memory_vm_functions:32768
used_memory_vm_total:146432
used_memory_vm_total_human:143.00K
used_memory_functions:184
used_memory_scripts:55408
used_memory_scripts_human:54.11K
maxmemory:268435456
maxmemory_human:256.00M
maxmemory_policy:allkeys-lru
allocator_frag_ratio:1.77
allocator_frag_bytes:1452592
allocator_rss_ratio:2.17
allocator_rss_bytes:3932160
rss_overhead_ratio:1.06
rss_overhead_bytes:466944
mem_fragmentation_ratio:5.11
mem_fragmentation_bytes:6232680
mem_not_counted_for_evict:0
mem_replication_backlog:0
mem_total_replication_buffers:0
mem_clients_slaves:0
mem_clients_normal:3856
mem_cluster_links:0
mem_aof_buffer:0
mem_allocator:jemalloc-5.3.0
active_defrag_running:0
lazyfree_pending_objects:0
lazyfreed_objects:0

# Persistence
loading:0
async_loading:0
current_cow_peak:0
current_cow_size:0
current_cow_size_age:0
current_fork_perc:0.00
current_save_keys_processed:0
current_save_keys_total:0
rdb_changes_since_last_save:694
rdb_bgsave_in_progress:0
rdb_last_save_time:1715244282
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:-1
rdb_current_bgsave_time_sec:-1
rdb_saves:2587
rdb_last_cow_size:0
rdb_last_load_keys_expired:0
rdb_last_load_keys_loaded:0
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok
aof_rewrites:0
aof_rewrites_consecutive_failures:0
aof_last_write_status:ok
aof_last_cow_size:0
module_fork_in_progress:0
module_fork_last_cow_size:0

# Stats
total_connections_received:1872
total_commands_processed:3507038
instantaneous_ops_per_sec:0
total_net_input_bytes:1820490984
total_net_output_bytes:69911798
total_net_repl_input_bytes:2872992
total_net_repl_output_bytes:0
instantaneous_input_kbps:0.00
instantaneous_output_kbps:0.00
instantaneous_input_repl_kbps:0.00
instantaneous_output_repl_kbps:0.00
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:0
expired_stale_perc:0.00
expired_time_cap_reached_count:0
expire_cycle_cpu_milliseconds:168373
evicted_keys:0
evicted_clients:0
total_eviction_exceeded_time:0
current_eviction_exceeded_time:0
keyspace_hits:24097
keyspace_misses:2375086
pubsub_channels:0
pubsub_patterns:0
pubsubshard_channels:0
latest_fork_usec:0
total_forks:0
migrate_cached_sockets:0
slave_expires_tracked_keys:0
active_defrag_hits:0
active_defrag_misses:0
active_defrag_key_hits:0
active_defrag_key_misses:0
total_active_defrag_time:0
current_active_defrag_time:0
tracking_total_keys:0
tracking_total_items:0
tracking_total_prefixes:0
unexpected_error_replies:0
total_error_replies:4808
dump_payload_sanitizations:0
total_reads_processed:791383
total_writes_processed:789170
io_threaded_reads_processed:0
io_threaded_writes_processed:0
reply_buffer_shrinks:1643
reply_buffer_expands:107
eventloop_cycles:24602647
eventloop_duration_sum:3304471300
eventloop_duration_cmd_sum:34093544
instantaneous_eventloop_cycles_per_sec:9
instantaneous_eventloop_duration_usec:147
acl_access_denied_auth:0
acl_access_denied_cmd:0
acl_access_denied_key:0
acl_access_denied_channel:0

# Replication
role:master
connected_slaves:0
master_failover_state:no-failover
master_replid:5e6e0278ace7707922e98755cd35e96475c4158e
master_replid2:e146c48d94f921efe82a6f04b969372238d781c0
master_repl_offset:0
second_repl_offset:1
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:1782.716568
used_cpu_user:1967.012603
used_cpu_sys_children:0.000000
used_cpu_user_children:0.005962
used_cpu_sys_main_thread:1782.426839
used_cpu_user_main_thread:1966.825224

# Modules

# Errorstats
errorstat_ERR:count=4719
errorstat_READONLY:count=89

# Cluster
cluster_enabled:0

# Keyspace
db0:keys=20,expires=16,avg_ttl=28627288

# Keys
# NOTE: more keys available in the database
backup4
nEnxl-IE2nEEXBGd1wgaddEnnQMwy3XxCzMi8RZAEBY
DadIGTgFSm_Gwo2Oz-XUyog1LeX95_8L21Xq1y3gUC4
pW2UhqN4AlE4BdsrvCc5n4H3BNFP3rZqz4oE60SjS0o
vgPnPhESFSzIGyxBORv96W6b_LKhdNETQnQwGI9v4qI
backup3
RSeXh-5MP9nlGTms1ldDa3_NiLlBwx-nT9-poD9NbkY
TN5dm1YKt_NKQtZBdpvRlHTLvBSQG0Sht70Fn0bzWEI
hTlUuj7o0bGoLJaQVilNE-cNHDgr1jXGG2VG0hwpqdo
Q8CNhEIJ7nXgRHlMrouS6gPcxC2Rxx9jHADeL8eJ2hg

# Connected Clients
id=4 addr=172.24.0.5:36288 laddr=172.24.0.3:6379 fd=9 name= age=2387915 idle=177 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=3 addr=172.24.0.5:36274 laddr=172.24.0.3:6379 fd=8 name= age=2387915 idle=176 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=1902 addr=224.104.44.207:40022 laddr=172.24.0.3:6379 fd=10 name= age=1 idle=0 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=26 qbuf-free=20448 argv-mem=10 multi-mem=0 rbs=1024 rbp=443 obl=0 oll=0 omem=0 tot-mem=22426 events=r cmd=client|list user=default redir=-1 resp=2 lib-name= lib-ver=

-1435253279 | 2024-04-19T18:52:22.100060

8545 / tcp

Ethereum RPC:
  Client: Autonity
  Version: v0.13.0
  Platform: linux-amd64
  Compiler: go1.21.6
  Chain Id: 0x3e158e2
  Hashrate: 0x0

65.21.155.128

Last Seen: 2024-05-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-708207476 | 2024-05-01T21:00:13.369693
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-04-30T06:33:45.936112
80 / tcp

nginx1.18.0

2085311893 | 2024-05-06T01:58:00.172408
443 / tcp

nginx1.18.0

1504788702 | 2024-04-28T02:33:26.756350
3000 / tcp

-1246004407 | 2024-05-06T09:49:02.837618
4000 / tcp

-1146199753 | 2024-05-04T23:33:16.481594
5000 / tcp

894516557 | 2024-05-09T08:50:13.490953
6379 / tcp

Redis key-value store7.2.4

-1435253279 | 2024-04-19T18:52:22.100060
8545 / tcp

Autonityv0.13.0

Products

Pricing

Contact Us

65.21.155.128

Last Seen: 2024-05-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-708207476 | 2024-05-01T21:00:13.369693 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-04-30T06:33:45.936112 80 / tcp

nginx1.18.0

2085311893 | 2024-05-06T01:58:00.172408 443 / tcp

nginx1.18.0

1504788702 | 2024-04-28T02:33:26.756350 3000 / tcp

-1246004407 | 2024-05-06T09:49:02.837618 4000 / tcp

-1146199753 | 2024-05-04T23:33:16.481594 5000 / tcp

894516557 | 2024-05-09T08:50:13.490953 6379 / tcp

Redis key-value store7.2.4

-1435253279 | 2024-04-19T18:52:22.100060 8545 / tcp

Autonityv0.13.0

Products

Pricing

Contact Us

-708207476 | 2024-05-01T21:00:13.369693
22 / tcp

1651973090 | 2024-04-30T06:33:45.936112
80 / tcp

2085311893 | 2024-05-06T01:58:00.172408
443 / tcp

1504788702 | 2024-04-28T02:33:26.756350
3000 / tcp

-1246004407 | 2024-05-06T09:49:02.837618
4000 / tcp

-1146199753 | 2024-05-04T23:33:16.481594
5000 / tcp

894516557 | 2024-05-09T08:50:13.490953
6379 / tcp

-1435253279 | 2024-04-19T18:52:22.100060
8545 / tcp