Bacon8tor

htf_report

Feb 8th, 2017
115
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. ##### SERVER #####
  2. IP-address (as per hostname): ***.***.***.***
  3. IP-address(es) (as per ifconfig): ***.***.***.***
  4. [INFO] ISPConfig is installed.
  5.  
  6. ##### ISPCONFIG #####
  7. ISPConfig version is 3.1.2
  8.  
  9.  
  10. ##### VERSION CHECK #####
  11.  
  12. [INFO] php (cli) version is 7.0.13-0ubuntu***.***.***.***
  13.  
  14. ##### PORT CHECK #####
  15.  
  16.  
  17. ##### MAIL SERVER CHECK #####
  18.  
  19.  
  20. ##### RUNNING SERVER PROCESSES #####
  21.  
  22. [INFO] I found the following web server(s):
  23. Apache 2 (PID 2768)
  24. [INFO] I found the following mail server(s):
  25. Postfix (PID 1914)
  26. [INFO] I found the following pop3 server(s):
  27. Dovecot (PID 1251)
  28. [INFO] I found the following imap server(s):
  29. Dovecot (PID 1251)
  30. [INFO] I found the following ftp server(s):
  31. PureFTP (PID 1775)
  32.  
  33. ##### LISTENING PORTS #####
  34. (only ()
  35. Local (Address)
  36. [localhost]:10023 (1421/postgrey.pid)
  37. [localhost]:10024 (1838/amavisd-new)
  38. [localhost]:10025 (1914/master)
  39. [localhost]:10026 (1838/amavisd-new)
  40. [localhost]:10027 (1914/master)
  41. [anywhere]:587 (1914/master)
  42. [localhost]:11211 (1135/memcached)
  43. [anywhere]:110 (1251/dovecot)
  44. [anywhere]:143 (1251/dovecot)
  45. [anywhere]:465 (1914/master)
  46. [anywhere]:21 (1775/pure-ftpd)
  47. ***.***.***.***:53 (1130/named)
  48. [localhost]:53 (1130/named)
  49. [anywhere]:22 (1147/sshd)
  50. [anywhere]:25 (1914/master)
  51. [localhost]:953 (1130/named)
  52. [anywhere]:993 (1251/dovecot)
  53. [anywhere]:995 (1251/dovecot)
  54. *:*:*:*::*:10023 (1421/postgrey.pid)
  55. *:*:*:*::*:10024 (1838/amavisd-new)
  56. *:*:*:*::*:10026 (1838/amavisd-new)
  57. *:*:*:*::*:3306 (1587/mysqld)
  58. *:*:*:*::*:587 (1914/master)
  59. [localhost]10 (1251/dovecot)
  60. [localhost]43 (1251/dovecot)
  61. *:*:*:*::*:8080 (2768/apache2)
  62. *:*:*:*::*:80 (2768/apache2)
  63. *:*:*:*::*:8081 (2768/apache2)
  64. *:*:*:*::*:465 (1914/master)
  65. *:*:*:*::*:21 (1775/pure-ftpd)
  66. *:*:*:*::*:53 (1130/named)
  67. *:*:*:*::*:22 (1147/sshd)
  68. *:*:*:*::*:25 (1914/master)
  69. *:*:*:*::*:953 (1130/named)
  70. *:*:*:*::*:443 (2768/apache2)
  71. *:*:*:*::*:993 (1251/dovecot)
  72. *:*:*:*::*:995 (1251/dovecot)
  73. ##### IPTABLES #####
  74. Chain INPUT (policy DROP)
  75. target prot opt source destination
  76. f2b-dovecot-pop3imap tcp -- [anywhere]/0 [anywhere]/0 m ultiport dports 110,995,143,993
  77. f2b-pureftpd tcp -- [anywhere]/0 [anywhere]/0 multiport dports 21
  78. f2b-postfix-sasl tcp -- [anywhere]/0 [anywhere]/0 multi port dports 25
  79. f2b-sshd tcp -- [anywhere]/0 [anywhere]/0 multiport dp orts 22
  80. ufw-before-logging-input all -- [anywhere]/0 [anywhere]/0
  81. ufw-before-input all -- [anywhere]/0 [anywhere]/0
  82. ufw-after-input all -- [anywhere]/0 [anywhere]/0
  83. ufw-after-logging-input all -- [anywhere]/0 [anywhere]/0
  84. ufw-reject-input all -- [anywhere]/0 [anywhere]/0
  85. ufw-track-input all -- [anywhere]/0 [anywhere]/0
  86.  
  87. Chain FORWARD (policy DROP)
  88. target prot opt source destination
  89. ufw-before-logging-forward all -- [anywhere]/0 [anywhere]/0
  90. ufw-before-forward all -- [anywhere]/0 [anywhere]/0
  91. ufw-after-forward all -- [anywhere]/0 [anywhere]/0
  92. ufw-after-logging-forward all -- [anywhere]/0 [anywhere]/0
  93. ufw-reject-forward all -- [anywhere]/0 [anywhere]/0
  94. ufw-track-forward all -- [anywhere]/0 [anywhere]/0
  95.  
  96. Chain OUTPUT (policy ACCEPT)
  97. target prot opt source destination
  98. ufw-before-logging-output all -- [anywhere]/0 [anywhere]/0
  99. ufw-before-output all -- [anywhere]/0 [anywhere]/0
  100. ufw-after-output all -- [anywhere]/0 [anywhere]/0
  101. ufw-after-logging-output all -- [anywhere]/0 [anywhere]/0
  102. ufw-reject-output all -- [anywhere]/0 [anywhere]/0
  103. ufw-track-output all -- [anywhere]/0 [anywhere]/0
  104.  
  105. Chain f2b-dovecot-pop3imap (1 references)
  106. target prot opt source destination
  107. RETURN all -- [anywhere]/0 [anywhere]/0
  108.  
  109. Chain f2b-postfix-sasl (1 references)
  110. target prot opt source destination
  111. RETURN all -- [anywhere]/0 [anywhere]/0
  112.  
  113. Chain f2b-pureftpd (1 references)
  114. target prot opt source destination
  115. RETURN all -- [anywhere]/0 [anywhere]/0
  116.  
  117. Chain f2b-sshd (1 references)
  118. target prot opt source destination
  119. RETURN all -- [anywhere]/0 [anywhere]/0
  120.  
  121. Chain ufw-after-forward (1 references)
  122. target prot opt source destination
  123.  
  124. Chain ufw-after-input (1 references)
  125. target prot opt source destination
  126. ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:137
  127. ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:138
  128. ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:139
  129. ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:445
  130. ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:67
  131. ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:68
  132. ufw-skip-to-policy-input all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST
  133.  
  134. Chain ufw-after-logging-forward (1 references)
  135. target prot opt source destination
  136. LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3 /min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  137.  
  138. Chain ufw-after-logging-input (1 references)
  139. target prot opt source destination
  140. LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3 /min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  141.  
  142. Chain ufw-after-logging-output (1 references)
  143. target prot opt source destination
  144.  
  145. Chain ufw-after-output (1 references)
  146. target prot opt source destination
  147.  
  148. Chain ufw-before-forward (1 references)
  149. target prot opt source destination
  150. ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELA TED,ESTABLISHED
  151. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3
  152. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 4
  153. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11
  154. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12
  155. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8
  156. ufw-user-forward all -- [anywhere]/0 [anywhere]/0
  157.  
  158. Chain ufw-before-input (1 references)
  159. target prot opt source destination
  160. ACCEPT all -- [anywhere]/0 [anywhere]/0
  161. ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELA TED,ESTABLISHED
  162. ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 ctsta te INVALID
  163. DROP all -- [anywhere]/0 [anywhere]/0 ctstate INVA LID
  164. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3
  165. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 4
  166. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11
  167. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12
  168. ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8
  169. ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp spt:67 d pt:68
  170. ufw-not-local all -- [anywhere]/0 [anywhere]/0
  171. ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:535 3
  172. ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:1900
  173. ufw-user-input all -- [anywhere]/0 [anywhere]/0
  174.  
  175. Chain ufw-before-logging-forward (1 references)
  176. target prot opt source destination
  177.  
  178. Chain ufw-before-logging-input (1 references)
  179. target prot opt source destination
  180.  
  181. Chain ufw-before-logging-output (1 references)
  182. target prot opt source destination
  183.  
  184. Chain ufw-before-output (1 references)
  185. target prot opt source destination
  186. ACCEPT all -- [anywhere]/0 [anywhere]/0
  187. ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELA TED,ESTABLISHED
  188. ufw-user-output all -- [anywhere]/0 [anywhere]/0
  189.  
  190. Chain ufw-logging-allow (0 references)
  191. target prot opt source destination
  192. LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3 /min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] "
  193.  
  194. Chain ufw-logging-deny (2 references)
  195. target prot opt source destination
  196. RETURN all -- [anywhere]/0 [anywhere]/0 ctstate INVA LID limit: avg 3/min burst 10
  197. LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3 /min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] "
  198.  
  199. Chain ufw-not-local (1 references)
  200. target prot opt source destination
  201. RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE mat ch dst-type LOCAL
  202. RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE mat ch dst-type MULTICAST
  203. RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE mat ch dst-type BROADCAST
  204. ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 limit : avg 3/min burst 10
  205. DROP all -- [anywhere]/0 [anywhere]/0
  206.  
  207. Chain ufw-reject-forward (1 references)
  208. target prot opt source destination
  209.  
  210. Chain ufw-reject-input (1 references)
  211. target prot opt source destination
  212.  
  213. Chain ufw-reject-output (1 references)
  214. target prot opt source destination
  215.  
  216. Chain ufw-skip-to-policy-forward (0 references)
  217. target prot opt source destination
  218. DROP all -- [anywhere]/0 [anywhere]/0
  219.  
  220. Chain ufw-skip-to-policy-input (7 references)
  221. target prot opt source destination
  222. DROP all -- [anywhere]/0 [anywhere]/0
  223.  
  224. Chain ufw-skip-to-policy-output (0 references)
  225. target prot opt source destination
  226. ACCEPT all -- [anywhere]/0 [anywhere]/0
  227.  
  228. Chain ufw-track-forward (1 references)
  229. target prot opt source destination
  230.  
  231. Chain ufw-track-input (1 references)
  232. target prot opt source destination
  233.  
  234. Chain ufw-track-output (1 references)
  235. target prot opt source destination
  236. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 ctstate NEW
  237. ACCEPT udp -- [anywhere]/0 [anywhere]/0 ctstate NEW
  238.  
  239. Chain ufw-user-forward (1 references)
  240. target prot opt source destination
  241.  
  242. Chain ufw-user-input (1 references)
  243. target prot opt source destination
  244. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:20
  245. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:21
  246. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:22
  247. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:25
  248. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:53
  249. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:80
  250. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:110
  251. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:143
  252. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:443
  253. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:587
  254. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:993
  255. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:995
  256. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:3306
  257. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8080
  258. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8081
  259. ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:1000 0
  260. ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp dpt:53
  261. ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp dpt:3306
  262.  
  263. Chain ufw-user-limit (0 references)
  264. target prot opt source destination
  265. LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3 /min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] "
  266. REJECT all -- [anywhere]/0 [anywhere]/0 reject-with icmp-port-unreachable
  267.  
  268. Chain ufw-user-limit-accept (0 references)
  269. target prot opt source destination
  270. ACCEPT all -- [anywhere]/0 [anywhere]/0
  271.  
  272. Chain ufw-user-logging-forward (0 references)
  273. target prot opt source destination
  274.  
  275. Chain ufw-user-logging-input (0 references)
  276. target prot opt source destination
  277.  
  278. Chain ufw-user-logging-output (0 references)
  279. target prot opt source destination
  280.  
  281. Chain ufw-user-output (1 references)
  282. target prot opt source destination
RAW Paste Data