Linux Server Audit & Security Check
Is your infrastructure a ticking time bomb?
Outdated kernels, open ports or broken backups often only become apparent when it's too late. We thoroughly examine your systems – before things go wrong.
1-2 days analysis
PDF report
Recommendations
Fixed price
We don't take over foreign systems blindly.
A server often runs "just fine" for years. But technical debt piles up under the hood. With the WZ-IT Server Audit, you get clarity about the actual state of your infrastructure.
💡You don't get an automated scan printout, but a hand-checked report. We log in, manually check configurations and evaluate the architecture.
What we check (Scope)
Our 360° check covers all critical areas.
Security & Hardening
- Open ports & unnecessary services
- Outdated packages & CVE check
- SSH configuration (root, keys)
- Firewall rules (UFW/NFTables)
- Rootkit & malware scan
Backup Validation
- Do backups actually exist?
- Backup log verification
- Encryption check
- Offsite strategy evaluation
System Health
- Disk health (SMART values)
- Storage utilization & inodes
- Logfile analysis for errors
- Database status (basic check)
Your result: The audit report
We don't deliver excuses, but facts. In the end, you get a PDF that even management understands.
Scorecard
A simple traffic light system for all areas. You immediately see where urgent action is needed.
Action-Plan
Prioritized list of measures. What needs to be fixed today, what can wait?
Quote
Cost estimate for fixing issues and taking over regular operations.
Clarity at a fixed price
Basic Audit (Single Server)
For root servers, VPS or cloud instances
Included:
No subscription. No contract. One-time payment.
For clusters or complex infrastructures, we're happy to create a custom quote.
The Process
Provide access credentials
SSH access, read-only for databases if applicable
We analyze
1-2 business days of intensive review
Report & discussion
PDF report + 1h video call for explanation
Optional: Remediation
Fix issues & take over regular operations
Frequently Asked Questions
Everything about process, security and results
Topics
Process & Security
No. The audit takes place during live operation. We don't perform load tests that could bring the server down. Your websites and services remain continuously accessible. We work minimally invasive.
We need SSH access (preferably via public key, alternatively password) with root or sudo privileges. Without root privileges, we cannot deeply examine system configurations, firewalls and log files.
Please never send passwords via email. We provide you with a link to our encrypted one-time secret service (e.g. PrivateBin/Vault). The data is automatically destroyed after a single retrieval.
Yes, of course. Since we gain deep insight into your data and infrastructure, we will send you a signed NDA (Non-Disclosure Agreement) and DPA (Data Processing Agreement under GDPR) upon request.
After completion of the audit and handover of the report, we irrevocably delete all credentials from our systems – unless you subsequently commission us with ongoing support.
Scope & Technology
We audit all common enterprise Linux systems: Ubuntu (all versions), Debian, AlmaLinux, Rocky Linux, CentOS (including EOL versions) and SUSE/SLES. Older versions (e.g. Ubuntu 14.04) are no problem – here the focus is usually on migration capability.
Yes. We check both 'bare' Linux servers and systems managed with panels like Plesk, cPanel, LiveConfig or CloudPanel. We specifically check whether the panel itself is securely configured and whether updates are pending.
We perform checks for rootkits, malware and suspicious cronjobs/processes (e.g. crypto miners). If we find traces of an active breach, we alert you immediately. Please note: A complete IT forensic investigation after a hack is a separate project, but the audit is the first step in detection.
Yes. We check MySQL/MariaDB and PostgreSQL for obvious misconfigurations (e.g. open ports to the outside, default passwords, missing backups). However, we don't do performance tuning of individual SQL queries (that would be application-level).
We check the configuration and logs of backup jobs (do they exist? do they run without errors?). An actual restore test (recovery) is not included in the base price, but can be optionally added (highly recommended!).
Results & Costs
No. The audit is an inventory. We don't change anything on the system during this time to avoid side effects. However, you receive a binding fixed-price offer to fix all identified deficiencies by us afterwards.
It's a one-time flat rate. You don't enter into a subscription or maintenance contract. There are no hidden costs.
In case of imminent danger (e.g. open database on the internet, known exploit) we inform you immediately by phone or email, even before the report is finished, so you (or we) can close the gap.
Yes, that's the ideal case. Once the audit is complete and the issues are fixed, we know your system perfectly. We're happy to provide you with an offer for Managed Services (updates, monitoring, support) at a monthly fixed price.
No. We are 100% specialized in Linux. We don't audit Windows Server (IIS, Active Directory, Exchange) because we cannot guarantee the same expert standard as with Linux.
More questions? We are happy to help!
Clarity about your server status
Do you really know how your infrastructure is doing? Find out.
Industry-leading companies rely on us
What do our customers say?
Aleksandr Shuliko
CTO, EVA Real Estate, UAE
"I recently worked with Timo and the WZ-IT team, and honestly, it turned out to be one of the best tech decisions I have made for my business. Right from the start, Timo took the time to walk me through every step in a simple and calm way. No matter how many questions I had, he never rushed me. The results speak for themselves. With WZ-IT, we reduced our monthly expenses from $1,300 down to $250. This was a huge win for us."
Sonja Aßer
Data Manager, ARGE, Germany
"With Timo and Robin, you're not only on the safe side technically - you also get the best human support! Whether it's quick help in everyday life or complex IT solutions: the guys from WZ-IT think along with you, act quickly and speak a language you understand. The collaboration is uncomplicated, reliable and always on an equal footing. That makes IT fun - and above all: it works! Big thank you to the team! (translated) "
Pascal Hakkers
CEO, Aphy B.V., Netherlands
"WZ-IT manages our Proxmox cluster reliably and professionally. The team handles continuous monitoring and regular updates for us and responds very quickly to any issues or inquiries. They also configure new nodes, systems, and applications that we need to add to our cluster. With WZ-IT's proactive support, our cluster and the business-critical applications running on it remain stable, and high availability is consistently ensured. We value the professional collaboration and the noticeable relief it brings to our daily operations."
Gabriel Sanz Señor
CEO, Odiseo Solutions, Spain
"Counting on WZ-IT team was crucial, their expertise and solutions gave us the pace to deploy in production our services, even suggesting and performing improvements over our configuration and setup. We expect to keep counting on them for continuous maintenance of our services and implementation of new solutions."
Timo and Robin from WZ-IT set up a RocketChat server for us - and I couldn't be more satisfied! From the initial consultation to the final implementation, everything was absolutely professional, efficient, and to my complete satisfaction. I particularly appreciate the clear communication, transparent pricing, and the comprehensive expertise that both bring to the table. Even after the setup, they take care of the maintenance, which frees up my time enormously and allows me to focus on other important areas of my business - with the good feeling that our IT is in the best hands. I can recommend WZ-IT without reservation and look forward to continuing our collaboration! (translated)
We have had very good experiences with Mr. Wevelsiep and WZ-IT. The consultation was professional, clearly understandable, and at fair prices. The team not only implemented our requirements but also thought along and proactively. Instead of just processing individual tasks, they provided us with well-founded explanations that strengthened our own understanding. WZ-IT took a lot of pressure off us with their structured approach - that was exactly what we needed and is the reason why we keep coming back. (translated)
Robin and Timo provided excellent support during our migration from AWS to Hetzner! We received truly competent advice and will gladly return to their services in the future. (translated)
WZ-IT set up our Jitsi Meet Server anew - professional, fast, and reliable. (translated)
Let's Talk About Your Idea
Whether a specific IT challenge or just an idea – we look forward to the exchange. In a brief conversation, we'll evaluate together if and how your project fits with WZ-IT.
Trusted by leading companies
Timo Wevelsiep & Robin Zins
CEOs of WZ-IT