Knowledgebase Security & Compliance Intermediate

Hardening Your Server Security in 5 Actionable Steps

Reduce attack surface, enforce policy-based access, and leverage PixlFlip security automation to keep your community safe.

8 min read • Updated Jul 2, 2024

Lock down authentication

Enable multi-factor authentication for all admin accounts from **Settings → Security**. PixlFlip supports hardware keys, OTP apps, and email-based approvals.

  • Rotate API tokens every 30 days or whenever a teammate leaves.
  • Use IP allow lists for SFTP and panel access to limit exposure.

Automate vulnerability patching

Toggle automatic operating system updates in the **Maintenance** tab. For modded environments, schedule patch windows and alert collaborators before patches apply.

Combine automatic updates with daily snapshots to rollback quickly if a patch introduces unexpected behaviour.

Monitor suspicious behaviour

Use the **Insights → Security** dashboard to review login anomalies, port scans, and DDoS mitigation events. Configure webhook alerts to push incidents into your preferred chat tool.

Compliance ready reporting

Generate downloadable compliance packs for SOC 2, GDPR, and COPPA requirements from the **Reports** tab. These bundles include event logs, access records, and infrastructure diagrams.