Security Print

Securing Your Server – Best Practices

ARXD Hosting takes security seriously. Whether you're running a game server, Discord bot, web host, or a node, it's important to follow best practices to prevent unauthorized access, abuse, or data loss.

Follow this guide to ensure your server is as secure as possible.

1. Change Your Server Passwords

After your server is deployed:

• Visit https://panel.arxdhosting.org

• Click your server, then go to Settings → SFTP Details

• Use a strong and unique password — avoid using defaults!

• You can also update your panel account password under Account Settings

Use tools like https://bitwarden.com or https://1password.com to manage your credentials.

2. Remove Unused Plugins or Scripts

Excess plugins and mods can:

• Increase security risk

• Introduce vulnerabilities

• Cause instability or crashes

Only use trusted mods or sources. For plugin suggestions, visit:
Where to Find Mods & Plugins →

3. Keep Your Game Server Updated

Most exploits target outdated versions. Make sure your server is running the latest stable version of:

• Minecraft (Paper, Forge, Vanilla, etc.)

• CSGO

• Rust

• FiveM

• Discord Bots (Node.js / Python)

• Web Servers (WordPress / PHP)

You can update from the Startup tab or contact support to re-install your egg template.

4. File Permissions & Owner Rights

Only grant access to trusted staff or devs. Use these best practices:

• Don’t give full SFTP access unless necessary

• Use chmod 644 for config files, 755 for folders

• Avoid leaving API keys or tokens in visible config files

Need help? Open a ticket: Support →

5. Backup Regularly

Backups are a key part of security. We recommend:

• Enable auto-backups in your panel

• Download local backups weekly

• Use the restore feature if something goes wrong

Follow this guide for details:
Backups & Restores on The Panel →

6. Secure Console Usage

Your server console logs everything, including sensitive data if you’re not careful.

Tips:

• Never paste passwords or tokens into the console

• Don’t run untrusted scripts from the console

• Clear console logs regularly if needed

Use the Console tab responsibly.
More info: Using the Console →

7. Firewall & Port Protection

If you're running an unmanaged node or hosting:

• Use ufw or iptables to restrict open ports

• Never expose ports you don’t need (like SSH, RCON, MySQL)

• Keep your SSH keys secure — disable password login if possible

Need us to audit your firewall? Reach out to the support team!

8. Discord Bot Security

If you're hosting bots with us:

• Store your tokens in .env files

• NEVER hardcode sensitive info

• Validate and sanitize user input to avoid injections

Want to secure your bot further? Check out our Discord Bot Hardening Tips in a separate guide (coming soon).

9. Monitor & Audit

• Review panel activity regularly

• Monitor CPU/network usage for suspicious spikes

• Remove unused users from your server panel

If you suspect a breach, immediately stop the server, reset all credentials, and open a support ticket.

10. Final Checklist

✅ Unique SFTP password
✅ Latest server version
✅ No untrusted plugins
✅ Backups enabled
✅ Console use secured
✅ Tokens/private keys hidden
✅ Panel and SSH access restricted
✅ Support contact ready if anything goes wrong

Need assistance? We’re here 24/7.
→ Submit a Ticket