ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: venet0: <BROADCAST,POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN
link/void
inet 127.0.0.1/32 scope host venet0
inet 178.25*.*.*/32 brd 178.25*.*.* scope global venet0:0
inet 178.25*.*.*/32 brd 178.25*.*.* scope global venet0:1
inet6 ::2/128 scope global
valid_lft forever preferred_lft forever
ip r
default dev venet0 scope link
sudo iptables -nvx -L
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
136 14000 f2b-owncloud tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
345 95820 f2b-plesk-wordpress tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
345 95820 f2b-plesk-modsecurity tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
1340 344992 f2b-plesk-login tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 8880,8443
345 95820 f2b-BadBots tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
345 95820 f2b-apache tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
345 95820 f2b-plesk-roundcube tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
164 13876 f2b-plesk-dovecot tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 143,220,993,110,995,4190
164 13876 f2b-plesk-courierimap tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 143,220,993,110,995
33 9678 f2b-plesk-postfix tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 25,465,587
8 344 f2b-plesk-proftpd tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 21,20,990,989
3842 882132 f2b-recidive tcp -- * * 0.0.0.0/0 0.0.0.0/0
1095 78678 f2b-SSH tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
136 14000 f2b-owncloud tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
345 95820 f2b-plesk-wordpress tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
345 95820 f2b-plesk-modsecurity tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
1340 344992 f2b-plesk-login tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 8880,8443
345 95820 f2b-BadBots tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
345 95820 f2b-apache tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
345 95820 f2b-plesk-roundcube tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 80,443,7080,7081
164 13876 f2b-plesk-dovecot tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 143,220,993,110,995,4190
164 13876 f2b-plesk-courierimap tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 143,220,993,110,995
33 9678 f2b-plesk-postfix tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 25,465,587
8 344 f2b-plesk-proftpd tcp -- * * 0.0.0.0/0 0.0.0.0/0 multiport dports 21,20,990,989
3846 882332 f2b-recidive tcp -- * * 0.0.0.0/0 0.0.0.0/0
1095 78678 f2b-SSH tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
3852 891207 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:!0x17/0x02 state NEW reject-with tcp-reset
15 600 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
36 2232 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:12443
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:11443
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:11444
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8447
6 312 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8443
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8880
4 192 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
1 52 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
2 104 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21
8 376 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:587
1 52 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25
4 212 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:465
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:110
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:995
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:143
21 1212 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:993
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:106
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:3306
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:5432
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:9008
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:9080
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:137
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:138
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:139
2 104 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:445
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:1194
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53
1 28 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8 code 0
256 24657 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:!0x17/0x02 state NEW reject-with tcp-reset
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
0 0 ACCEPT all -- lo lo 0.0.0.0/0 0.0.0.0/0
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
2899 3599642 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:!0x17/0x02 state NEW reject-with tcp-reset
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID
36 2232 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
206 12401 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain VZ_FORWARD (0 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
Chain VZ_INPUT (0 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:110
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:32768:65535
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpts:32768:65535
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8880
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8443
0 0 ACCEPT tcp -- * * 127.0.0.1 127.0.0.1
0 0 ACCEPT udp -- * * 127.0.0.1 127.0.0.1
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
Chain VZ_OUTPUT (0 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:80
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:22
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:25
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:110
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:53
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp spt:53
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:8880
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:8443
0 0 ACCEPT tcp -- * * 127.0.0.1 127.0.0.1
0 0 ACCEPT udp -- * * 127.0.0.1 127.0.0.1
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-BadBots (2 references)
pkts bytes target prot opt in out source destination
690 191640 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-SSH (2 references)
pkts bytes target prot opt in out source destination
0 0 REJECT all -- * * 89.212.252.18 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 59.63.166.80 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 52.60.86.211 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 218.87.109.152 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 217.81.1.224 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 193.201.225.41 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 185.159.37.21 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 185.110.132.202 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 178.25*.*.* 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 123.31.35.39 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 121.15.77.58 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 116.31.116.28 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 59.63.166.80 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 52.60.86.211 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 217.81.1.224 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 185.159.37.21 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 185.110.132.202 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 178.25*.*.* 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 123.31.35.39 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 121.15.77.58 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 116.31.116.28 0.0.0.0/0 reject-with icmp-port-unreachable
2190 157356 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-apache (2 references)
pkts bytes target prot opt in out source destination
0 0 REJECT all -- * * 217.81.1.224 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 217.81.1.224 0.0.0.0/0 reject-with icmp-port-unreachable
690 191640 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-owncloud (2 references)
pkts bytes target prot opt in out source destination
272 28000 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-plesk-courierimap (2 references)
pkts bytes target prot opt in out source destination
328 27752 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-plesk-dovecot (2 references)
pkts bytes target prot opt in out source destination
0 0 REJECT all -- * * 37.49.224.119 0.0.0.0/0 reject-with icmp-port-unreachable
328 27752 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-plesk-login (2 references)
pkts bytes target prot opt in out source destination
2680 689984 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-plesk-modsecurity (2 references)
pkts bytes target prot opt in out source destination
690 191640 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-plesk-postfix (2 references)
pkts bytes target prot opt in out source destination
0 0 REJECT all -- * * 80.82.77.83 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 24.243.111.157 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 185.40.4.208 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 173.10.31.165 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 155.133.82.51 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 80.82.77.83 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 24.243.111.157 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 185.40.4.208 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 173.10.31.165 0.0.0.0/0 reject-with icmp-port-unreachable
0 0 REJECT all -- * * 155.133.82.51 0.0.0.0/0 reject-with icmp-port-unreachable
66 19356 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-plesk-proftpd (2 references)
pkts bytes target prot opt in out source destination
16 688 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-plesk-roundcube (2 references)
pkts bytes target prot opt in out source destination
690 191640 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-plesk-wordpress (2 references)
pkts bytes target prot opt in out source destination
690 191640 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain f2b-recidive (2 references)
pkts bytes target prot opt in out source destination
0 0 REJECT all -- * * 217.81.1.224 0.0.0.0/0 reject-with icmp-port-unreachable
7688 1764464 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
sudo netstat -tlpen (SSH wieder auf 22 da gewünschter Port nicht geht)
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State User Inode PID/Program name
tcp 0 0 0.0.0.0:10011 0.0.0.0:* LISTEN 1000 4278063129 2665/ts3server
tcp 0 0 178.25*.*.*:443 0.0.0.0:* LISTEN 0 4277857786 1741/nginx
tcp 0 0 178.25*.*.*:443 0.0.0.0:* LISTEN 0 4277857785 1741/nginx
tcp 0 0 0.0.0.0:8443 0.0.0.0:* LISTEN 0 4277856923 1232/config
tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 0 4277863535 2090/smbd
tcp 0 0 0.0.0.0:4190 0.0.0.0:* LISTEN 0 4277857098 1357/dovecot
tcp 0 0 127.0.0.1:12768 0.0.0.0:* LISTEN 108 4277854801 535/psa-pc-remote
tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 0 4277857143 1357/dovecot
tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 0 4277857119 1357/dovecot
tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN 0 4277863536 2090/smbd
tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 0 4277857117 1357/dovecot
tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 0 4277857141 1357/dovecot
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 0 4277852618 160/rpcbind
tcp 0 0 178.25*.*.*:80 0.0.0.0:* LISTEN 0 4277857784 1741/nginx
tcp 0 0 178.25*.*.*:80 0.0.0.0:* LISTEN 0 4277857783 1741/nginx
tcp 0 0 0.0.0.0:8880 0.0.0.0:* LISTEN 0 4277856925 1232/config
tcp 0 0 0.0.0.0:30033 0.0.0.0:* LISTEN 1000 4278063111 2665/ts3server
tcp 0 0 0.0.0.0:465 0.0.0.0:* LISTEN 0 4277865377 2384/master
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 0 4277856224 598/sshd
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 0 4277865241 2384/master
tcp6 0 0 :::10011 :::* LISTEN 1000 4278063130 2665/ts3server
tcp6 0 0 :::8443 :::* LISTEN 0 4277856926 1232/config
tcp6 0 0 :::445 :::* LISTEN 0 4277863533 2090/smbd
tcp6 0 0 :::4190 :::* LISTEN 0 4277857099 1357/dovecot
tcp6 0 0 :::993 :::* LISTEN 0 4277857144 1357/dovecot
tcp6 0 0 :::995 :::* LISTEN 0 4277857120 1357/dovecot
tcp6 0 0 :::7080 :::* LISTEN 0 4277861180 1869/apache2
tcp6 0 0 :::7081 :::* LISTEN 0 4277861184 1869/apache2
tcp6 0 0 127.0.0.1:3306 :::* LISTEN 111 4277864524 797/mysqld
tcp6 0 0 :::106 :::* LISTEN 0 4277856328 777/xinetd
tcp6 0 0 :::139 :::* LISTEN 0 4277863534 2090/smbd
tcp6 0 0 :::110 :::* LISTEN 0 4277857118 1357/dovecot
tcp6 0 0 ::1:783 :::* LISTEN 0 4277858470 1748/.spamassassin
tcp6 0 0 :::143 :::* LISTEN 0 4277857142 1357/dovecot
tcp6 0 0 :::111 :::* LISTEN 0 4277852621 160/rpcbind
tcp6 0 0 :::8880 :::* LISTEN 0 4277856927 1232/config
tcp6 0 0 :::30033 :::* LISTEN 1000 4278063112 2665/ts3server
tcp6 0 0 :::465 :::* LISTEN 0 4277865378 2384/master
tcp6 0 0 :::21 :::* LISTEN 0 4277856327 777/xinetd
tcp6 0 0 :::22 :::* LISTEN 0 4277856226 598/sshd
tcp6 0 0 :::25 :::* LISTEN 0 4277865242 2384/master
systemctl Status ssh
● ssh.service - OpenBSD Secure Shell server
Loaded: loaded (/lib/systemd/system/ssh.service; enabled; vendor preset: enabled)
Active: active (running) since Tue 2016-12-20 21:03:55 CET; 43min ago
Main PID: 598 (sshd)
CGroup: /system.slice/ssh.service
└─598 /usr/sbin/sshd -D
Dec 20 21:03:55 *******.1blu.de sshd[598]: Server listening on 0.0.0.0 port 22.
Dec 20 21:03:55 *******.1blu.de sshd[598]: Server listening on :: port 22.
PS aux | grep -i [s]sh
root 598 0.0 0.0 65464 3296 ? Ss 21:03 0:00 /usr/sbin/sshd -D
root 2561 0.0 0.1 105804 5108 ? Ss 21:15 0:00 sshd: root@notty
root 2574 0.0 0.0 12832 1052 ? Ss 21:15 0:00 /usr/lib/openssh/sftp-server
root 2590 0.0 0.1 105344 4600 ? Ss 21:25 0:00 sshd: root@pts/0
sshd_config
# Package generated configuration file
# See the sshd_config(5) manpage for details
# What ports, IPs and protocols we listen for
Port 22
# Use these options to restrict which interfaces/protocols sshd will bind to
#ListenAddress ::
#ListenAddress 0.0.0.0
Protocol 2
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
HostKey /etc/ssh/ssh_host_ecdsa_key
HostKey /etc/ssh/ssh_host_ed25519_key
#Privilege Separation is turned on for security
UsePrivilegeSeparation yes
# Lifetime and size of ephemeral version 1 server key
KeyRegenerationInterval 3600
ServerKeyBits 1024
# Logging
SyslogFacility AUTH
LogLevel INFO
# Authentication:
LoginGraceTime 120
PermitRootLogin without-password
StrictModes yes
RSAAuthentication yes
PubkeyAuthentication yes
#AuthorizedKeysFile %h/.ssh/authorized_keys
# Don't read the user's ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
# similar for protocol version 2
HostbasedAuthentication no
# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
#IgnoreUserKnownHosts yes
# To enable empty passwords, change to yes (NOT RECOMMENDED)
PermitEmptyPasswords no
# Change to yes to enable challenge-response passwords (beware issues with
# some PAM modules and threads)
ChallengeResponseAuthentication no
# Change to no to disable tunnelled clear text passwords
#PasswordAuthentication yes
# Kerberos options
#KerberosAuthentication no
#KerberosGetAFSToken no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes
# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes
X11Forwarding yes
X11DisplayOffset 10
PrintMotd no
PrintLastLog yes
TCPKeepAlive yes
#UseLogin no
#MaxStartups 10:30:60
#Banner /etc/issue.net
# Allow client to pass locale environment variables
AcceptEnv LANG LC_*
Subsystem sftp /usr/lib/openssh/sftp-server
# Set this to 'yes' to enable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
# be allowed through the ChallengeResponseAuthentication and
# PasswordAuthentication. Depending on your PAM configuration,
# PAM authentication via ChallengeResponseAuthentication may bypass
# the setting of "PermitRootLogin without-password".
# If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and ChallengeResponseAuthentication to 'no'.
UsePAM yes