Linux Server Audit & Security Check
Is your infrastructure a ticking time bomb?
Outdated kernels, open ports or broken backups often only become apparent when it's too late. We thoroughly examine your systems – before things go wrong.
1-2 days analysis
PDF report
Recommendations
Fixed price
We don't take over foreign systems blindly.
A server often runs "just fine" for years. But technical debt piles up under the hood. With the WZ-IT Server Audit, you get clarity about the actual state of your infrastructure.
💡You don't get an automated scan printout, but a hand-checked report. We log in, manually check configurations and evaluate the architecture.
What we check (Scope)
Our 360° check covers all critical areas.
Security & Hardening
- Open ports & unnecessary services
- Outdated packages & CVE check
- SSH configuration (root, keys)
- Firewall rules (UFW/NFTables)
- Rootkit & malware scan
Backup Validation
- Do backups actually exist?
- Backup log verification
- Encryption check
- Offsite strategy evaluation
System Health
- Disk health (SMART values)
- Storage utilization & inodes
- Logfile analysis for errors
- Database status (basic check)
Your result: The audit report
We don't deliver excuses, but facts. In the end, you get a PDF that even management understands.
Scorecard
A simple traffic light system for all areas. You immediately see where urgent action is needed.
Action-Plan
Prioritized list of measures. What needs to be fixed today, what can wait?
Quote
Cost estimate for fixing issues and taking over regular operations.
Clarity at a fixed price
Basic Audit (Single Server)
For root servers, VPS or cloud instances
Included:
No subscription. No contract. One-time payment.
For clusters or complex infrastructures, we're happy to create a custom quote.
The Process
Provide access credentials
SSH access, read-only for databases if applicable
We analyze
1-2 business days of intensive review
Report & discussion
PDF report + 1h video call for explanation
Optional: Remediation
Fix issues & take over regular operations
Clarity about your server status
Do you really know how your infrastructure is doing? Find out.
Manage Your Stack in the Customer Portal
Monitor your infrastructure in real-time, schedule maintenance and get direct support – all in one central portal.
- Real-time infrastructure status
- Reschedule maintenance windows yourself
- View complete access logs
- Direct support without detours
Frequently Asked Questions
Everything about process, security and results
Topics
Process & Security
No. The audit takes place during live operation. We don't perform load tests that could bring the server down. Your websites and services remain continuously accessible. We work minimally invasive.
We need SSH access (preferably via public key, alternatively password) with root or sudo privileges. Without root privileges, we cannot deeply examine system configurations, firewalls and log files.
Please never send passwords via email. We provide you with a link to our encrypted one-time secret service (e.g. PrivateBin/Vault). The data is automatically destroyed after a single retrieval.
Yes, of course. Since we gain deep insight into your data and infrastructure, we will send you a signed NDA (Non-Disclosure Agreement) and DPA (Data Processing Agreement under GDPR) upon request.
After completion of the audit and handover of the report, we irrevocably delete all credentials from our systems – unless you subsequently commission us with ongoing support.
Scope & Technology
We audit all common enterprise Linux systems: Ubuntu (all versions), Debian, AlmaLinux, Rocky Linux, CentOS (including EOL versions) and SUSE/SLES. Older versions (e.g. Ubuntu 14.04) are no problem – here the focus is usually on migration capability.
Yes. We check both 'bare' Linux servers and systems managed with panels like Plesk, cPanel, LiveConfig or CloudPanel. We specifically check whether the panel itself is securely configured and whether updates are pending.
We perform checks for rootkits, malware and suspicious cronjobs/processes (e.g. crypto miners). If we find traces of an active breach, we alert you immediately. Please note: A complete IT forensic investigation after a hack is a separate project, but the audit is the first step in detection.
Yes. We check MySQL/MariaDB and PostgreSQL for obvious misconfigurations (e.g. open ports to the outside, default passwords, missing backups). However, we don't do performance tuning of individual SQL queries (that would be application-level).
We check the configuration and logs of backup jobs (do they exist? do they run without errors?). An actual restore test (recovery) is not included in the base price, but can be optionally added (highly recommended!).
Results & Costs
No. The audit is an inventory. We don't change anything on the system during this time to avoid side effects. However, you receive a binding fixed-price offer to fix all identified deficiencies by us afterwards.
It's a one-time flat rate. You don't enter into a subscription or maintenance contract. There are no hidden costs.
In case of imminent danger (e.g. open database on the internet, known exploit) we inform you immediately by phone or email, even before the report is finished, so you (or we) can close the gap.
Yes, that's the ideal case. Once the audit is complete and the issues are fixed, we know your system perfectly. We're happy to provide you with an offer for Managed Services (updates, monitoring, support) at a monthly fixed price.
No. We are 100% specialized in Linux. We don't audit Windows Server (IIS, Active Directory, Exchange) because we cannot guarantee the same expert standard as with Linux.
More questions? We are happy to help!
Industry-leading companies rely on us
What do our customers say?
Let's Talk About Your Idea
Whether a specific IT challenge or just an idea – we look forward to the exchange. In a brief conversation, we'll evaluate together if and how your project fits with WZ-IT.
Trusted by leading companies
Timo Wevelsiep & Robin Zins
CEOs of WZ-IT