🛡️ Security Report

Monday, June 08, 2026 — 22:00 ICT

💻 System Health

32G/473G
Disk Used
1.4Gi/30Gi
Memory (5%)
1.22, 1.04, 1.12
Load Average
1 week, 5 days, 13 hours, 16 minutes
Uptime

Fail2ban: active  ·  UFW Blocks (24h): 4,747

📡 Open Ports

Local AddressService
100.80.139.9:36486tailscaled
10.0.1.1:22sshd
100.80.139.9:22sshd
100.80.139.9:8000docker-proxy
10.0.0.1:22sshd
100.80.139.9:6002docker-proxy
100.80.139.9:6001docker-proxy
127.0.0.54:53systemd-resolve
0.0.0.0:8080docker-proxy
127.0.0.1:24543moshi-hook
127.0.0.1:8000docker-proxy
100.80.139.9:8443tailscaled
127.0.0.1:20241cloudflared
127.0.0.53%lo:53systemd-resolve
127.0.0.1:22sshd
0.0.0.0:80docker-proxy
0.0.0.0:443docker-proxy
[fd7a:115c:a1e0::533b:8b09]:43591tailscaled
[fd7a:115c:a1e0::533b:8b09]:8443tailscaled
[::]:8080docker-proxy
[fd7a:115c:a1e0::533b:8b09]:22sshd
[::]:80docker-proxy
[::]:443docker-proxy

⚠ External

Local AddressService
10.0.1.1:22sshd
10.0.0.1:22sshd
127.0.0.54:53systemd-resolve
0.0.0.0:8080docker-proxy
127.0.0.53%lo:53systemd-resolve
0.0.0.0:80docker-proxy
0.0.0.0:443docker-proxy
[::]:8080docker-proxy
[::]:80docker-proxy
[::]:443docker-proxy

🔥 Firewall (UFW)

Status: active

To                         Action      From
--                         ------      ----
41641/udp                  ALLOW       Anywhere                  
22/tcp on tailscale0       ALLOW       Anywhere                   # SSH via Tailscale only
Anywhere on tailscale0     ALLOW       Anywhere                  
60000:61000/udp on tailscale0 ALLOW       Anywhere                   # Mosh via Tailscale
41641/udp (v6)             ALLOW       Anywhere (v6)             
22/tcp (v6) on tailscale0  ALLOW       Anywhere (v6)              # SSH via Tailscale only
Anywhere (v6) on tailscale0 ALLOW       Anywhere (v6)             
60000:61000/udp (v6) on tailscale0 ALLOW       Anywhere (v6)              # Mosh via Tailscale

🔐 SSH Activity

0
Failed Attempts (24h)
5787
New Sessions (24h)

Recent SSH Logins (last 10)

TimeIPHostPortSource
06/08 21:3110.0.1.1010.0.1.1053258🔑 sshd
06/08 21:3410.0.1.1010.0.1.1059330🔑 sshd
06/08 21:3710.0.1.1010.0.1.1038370🔑 sshd
06/08 21:4010.0.1.1010.0.1.1055558🔑 sshd
06/08 21:4310.0.1.1010.0.1.1048496🔑 sshd
06/08 21:4610.0.1.1010.0.1.1034946🔑 sshd
06/08 21:4910.0.1.1010.0.1.1046990🔑 sshd
06/08 21:5210.0.1.1010.0.1.1056188🔑 sshd
06/08 21:5510.0.1.1010.0.1.1041782🔑 sshd
06/08 21:5810.0.1.1010.0.1.1042888🔑 sshd

🔍 Processes

⚠ High CPU (>50%)

UserPIDCPUCommand
9999985834116%/usr/local/bin/php9999|985806|100%|/usr/local/bin/php

✓ No high memory processes

🌐 Tailscale

10/14 peers online

NodeOSIPStatus
ssdnode this machinelinux100.80.139.9✓ Online
boxlinux100.86.226.66✓ Online
contabolinux100.111.135.6✓ Online
hkrouterlinux100.66.31.7✓ Online
ipad13tviOS100.117.146.121✓ Online
ipadproiOS100.65.224.43✓ Online
iphoneairiOS100.95.106.126✓ Online
kitailinux100.97.4.90✓ Online
kitmbp16macOS100.123.239.87✓ Online
kits-macbook-airmacOS100.127.101.27✓ Online
tencentlinux100.109.227.19✓ Online
appletvtvOS100.108.161.6✗ Offline
iphone-14-pro-maxiOS100.92.136.103✗ Offline
kitlegiongowindows100.67.231.89✗ Offline
mobilerouterlinux100.127.101.21✗ Offline

🐣 Docker

✓ No TCP daemon exposure

ContainerStatusPorts
coolify-sentinelUp 23 hours (healthy)
so13t9jiakgbyzwp863dmvzu-103035573499Up 23 hours3000/tcp
lijg3ncf0yp8on32jagmeg0yUp 23 hours (healthy)5432/tcp
lkn2msiqhoymcuyaa64cnazj-065012572847Up 23 hours3000/tcp
ithh2dbx1jyjl6dejr3mre1kUp 23 hours (healthy)5432/tcp
enthri8p43s4atofatobcunp-232449789422Up 23 hours3000/tcp
coolifyUp 23 hours (healthy)8000/tcp, 8443/tcp, 9000/tcp, 100.80.139.9:8000->8080/tcp, 127.0.0.1:8000->8080/tcp
coolify-proxyUp 23 hours (healthy)0.0.0.0:80->80/tcp, [::]:80->80/tcp, 0.0.0.0:443->443/tcp, [::]:443->443/tcp, 0.0.0.0:8080->8080/tcp, [::]:8080->8080/tcp, 0.0.0.0:443->443/udp, [::]:443->443/udp
coolify-realtimeUp 23 hours (healthy)100.80.139.9:6001-6002->6001-6002/tcp
coolify-dbUp 23 hours (healthy)5432/tcp
coolify-redisUp 23 hours (healthy)6379/tcp

🚫 UFW Block Details (24h)

Top Source IPs

752 10.0.1.10
    714 10.0.0.2
    319 41.168.10.139
    305 160.119.76.34
    177 2
    154 2001
    138 2604
    118 67.220.180.114
     90 193.32.162.211
     44 2404

Top Targeted Ports

758 23517
    720 8000
    498 23
     60 2221
     24 3389
     23 22
     13 8443
     13 8081
     11 5432
     11 5060

📋 Report History