How to Secure a Linux Server for Deployments: A Practical Hardening Checklist
Hardening checklist for Linux deployment servers: SSH, user isolation, firewall, fail2ban, auto-updates, intrusion detection — eight things that matter.
DeployHQ is a code deployment platform designed to help you get files from Git, Mercurial & Subversion repositories onto your servers using SFTP, FTP, S3, Digital Ocean and more!
Security
Advice and information on protecting your servers, systems, and websites.
Displaying posts 1 - 12 of 23 in total
SAML Single Sign‑On Is Now Available for DeployHQ Enterprise Customers
SAML single sign-on is now live for DeployHQ Enterprise customers — Okta, Entra ID, Google Workspace, Auth0 and any SAML 2.0 provider.
SOC 2 Compliance for Deployment Workflows: What Auditors Look For
Your deployment pipeline is an audit surface. Here are the six controls SOC 2 auditors actually check — SSO, RBAC, audit trails, change management, environment separation, and vendor compliance — and how to meet them without slowing down.
API Versioning and Deployment Strategies: Rolling Out Breaking Changes Safely
Master API versioning for safe deployments. Learn URL path, header, and query versioning strategies, backward compatibility patterns, deprecation workflows, and contract testing.
Introducing Teams Management: Streamlined Access Control for Agencies and Growing Teams
Introducing Teams Management: organize users into teams with shared permissions and project access. Perfect for agencies managing multiple client deployments.
How to Deploy PHP Applications with Encrypted Environment Variables Using Dotenvx and DeployHQ
Learn how to securely deploy PHP applications with encrypted .env files using dotenvx and DeployHQ. Step-by-step guide for Laravel and vanilla PHP projects.
Deploying to a Private Network? A Guide to Using DeployHQ Behind a Firewall
Learn best practices for DeployHQ network agents including auto-startup, SSH security, and monitoring. Discover the benefits of pull deployments for servers behind firewalls or in private networks, with step-by-step configuration instructions for complex environments.
Flyway Database Migrations in 2026: Java, Python, Node.js, and CI/CD
Flyway isn't just for Java: run migrations from Python, Node.js, and any stack in 2026 — with CI/CD, rollback strategies, and zero-downtime deploys.
Protect Your Environments: Practical Security Tips for Smarter Deployments
Learn practical security tips for safer deployments. Discover best practices for protecting your apps, from secrets management to automation, and see how DeployHQ helps secure your release pipeline for worry-free launches.
Fail2Ban Configuration Guide: Custom Jails, SSH & CrowdSec
A hands-on Fail2Ban guide: install, configure jail.local, write custom filters, harden SSH, and compare with CrowdSec and Cloudflare WAF.
The Ultimate Deployment Checklist: A Practical Guide to Reliable Releases
A battle-tested deployment checklist covering pre-deployment validation, zero downtime execution, and post-deployment verification. Includes real code examples, CI/CD configs, and rollback strategies used in production environments.
Deploy Keycloak 26 on Ubuntu 24.04: Production VPS with Docker and DeployHQ
Deploy Keycloak 26 on a VPS with Docker Compose, PostgreSQL, Nginx, and TLS. This production-ready guide includes automated configuration deployments with DeployHQ.