🔒 Security
API keys, agent integrity, webhook security, and account protection.
Agent Integrity and Checksum Verification
Server Scout's integrity verification system provides a crucial layer of security by ensuring that monitoring agents haven't been tampered with or corrupted. This automated process helps protect ag...
Managing and Rotating API Keys
Server Scout uses unique API keys to authenticate your monitoring agents with the centralised monitoring service. Each server receives a 64-character hexadecimal API key during initial setup, which...
Securing Webhook Endpoints
## Built-in SSRF Protection Server Scout includes robust Server-Side Request Forgery (SSRF) protection through the `validateWebhookUrl()` function. This security measure automatically blocks webho...
Password Management and Account Recovery
## Understanding Server Scout's Password Security Server Scout takes a comprehensive approach to password security, implementing multiple layers of protection to keep your monitoring data safe. Th...
Understanding Server Scout Security
Server Scout is designed with security as a fundamental principle rather than an afterthought. Our multi-layered security approach ensures that your monitoring infrastructure remains secure whilst ...
Firewall Rules for Agent Communication
## Overview Server Scout agents require minimal firewall configuration to communicate with the monitoring dashboard. The design prioritises security by using outbound-only connections, eliminating...
Agent Systemd Hardening Explained
## Understanding Server Scout's Security Approach The Server Scout agent is designed with security as a fundamental principle, not an afterthought. Through systemd's comprehensive hardening featur...
Session Security and Login Protection
## Overview Server Scout takes security seriously, implementing multiple layers of protection to safeguard your monitoring dashboard and server data. This article explains the security measures in...
Setting Up Two-Factor Authentication
## Why Enable Two-Factor Authentication? Two-factor authentication (2FA) provides an additional layer of security beyond your password. Even if your password is compromised through a data breach o...
Using Google Sign-In with Server Scout
Google Sign-In integration allows you to log into your Server Scout account using your existing Google credentials, eliminating the need for a separate password whilst leveraging Google's robust se...
Data Encryption and Transport Security
## Comprehensive Security by Design Server Scout implements security at every layer of the platform, ensuring your monitoring data remains protected throughout its entire lifecycle. From the momen...
Understanding the Audit Log for Compliance
## What the Audit Log Tracks Server Scout's audit log provides comprehensive tracking of all significant user actions within your monitoring environment. This creates an auditable trail of system ...
Account Security Best Practices
Security is a shared responsibility between Server Scout and our users. While we implement robust security measures including TLS encryption, encryption at rest, and SHA-256 agent integrity verific...
What Data Does the Server Scout Agent Collect?
The Server Scout agent is designed to collect only the essential system metrics needed for effective server monitoring whilst maintaining your privacy and security. This article provides a complete...