Path: Security (
/security) — Admin onlyThe Security page is the central hub for all server security management. It uses a horizontal tab navigation with 13 dedicated sections.Security Tabs
Overview
Overview
Status display showing the overall security posture of the selected server. Includes a refresh button to pull the latest state.
Firewall (UFW)
Firewall (UFW)
Manage UFW firewall rules:
- View all current rules (port, protocol, action, source)
- Add inbound/outbound ALLOW or DENY rules
- Delete rules
- Enable/disable the firewall
Fail2ban
Fail2ban
Intrusion prevention configuration:
- View active jails (SSH, Nginx, AreaWP auth, WordPress)
- See currently banned IPs with ban time and reason
- Unban an IP immediately
- Permanent Ban — add to the permanent blocklist
- Adjust thresholds: max retries, find time, ban duration
- Add IPs to the ignore list (whitelist)
SSH Keys
SSH Keys
Manage authorized SSH keys for the server:
- View all public keys with name and fingerprint
- Add a new SSH key (paste public key)
- Delete any key
- Generate a new keypair from the panel
IP Lists
IP Lists
Manage allowlists and blocklists:
- Allowlist — IPs always permitted regardless of other rules
- Blocklist — IPs permanently denied at the firewall level
- Add single IPs or CIDR ranges to either list
Scanner
Scanner
Malware and file scanner — scans the server filesystem for:
- Known malware signatures
- Suspicious file patterns
- PHP shell indicators
- Results show affected files with severity and recommended action
Quarantine
Quarantine
Files flagged by the scanner appear here. Quarantine moves suspicious files to an isolated location without deleting them. Review and restore or permanently delete quarantined files.
Integrity
Integrity
File integrity monitoring — detects unauthorized changes to critical system files and web app files:
- Set a baseline snapshot
- Compare current state against baseline
- Shows modified, added, and deleted files with timestamps
Audit
Audit
Security audit runner — checks for common vulnerabilities and misconfigurations:
- Open ports and unexpected services
- Packages with outstanding security patches
- World-writable files
- Weak SSH configuration
- Results are scored with actionable recommendations
Vulnerability
Vulnerability
CVE and package vulnerability scanner — checks installed packages against known vulnerability databases. Shows CVE IDs, severity, and available patch versions.
Updates
Updates
Auto-updates configuration — enable automatic security patch installation for:
- OS packages (apt/dnf security updates)
- AreaWP panel
- Agent binary
- Set maintenance window (day and time)
Events
Events
Security event log — real-time feed of security-relevant system events:
- Login successes and failures
- sudo commands executed
- Firewall rule hits
- Fail2ban bans and unbans
- File system changes (if integrity monitoring active)
Settings
Settings
Security configuration options:
- Enable/disable individual security features
- Set notification preferences for security events
- Configure scan schedules
- Security hardening presets (apply recommended settings)