Moss.sh Server Management Platform

What is Moss.sh?

Moss is a server management platform focused on security and simplicity. It manages provisioning, deployment, SSL, security hardening, and team collaboration, emphasizing security best practices out of the box.

Connecting Your Server

# Servers > Add Server > Custom VPS
# Enter IP and root SSH credentials
# Moss provisions: Nginx, PHP-FPM (multiple versions),
# MySQL/MariaDB, Redis, UFW (hardened), Fail2ban,
# auto security updates, optional ClamAV

Creating Sites

# Sites > Create Site
# Domain, PHP version, Git repository
# Creates: Nginx vhost with security headers,
# dedicated PHP-FPM pool (isolated per site),
# site user with restricted permissions,
# auto SSL via Let us Encrypt

Security Features

# Applied automatically:
# SSH: key-only auth, non-standard port, root disabled
# Web: security headers, A+ SSL, HSTS, OCSP stapling
# PHP: open_basedir, disable_functions, separate FPM pools
# Firewall: minimal open ports, rate limiting

Deployment

# Git-based with customizable deployment scripts
# Auto-deploy via webhook from GitHub/GitLab
# Example script:
cd $SITE_PATH
git pull origin main
composer install --no-dev --optimize-autoloader
php artisan migrate --force
php artisan config:cache

Team Collaboration

# Roles: Owner, Admin, Developer, Viewer
# All actions logged in audit trail
# Security > Audit Log for review

Monitoring

# CPU, memory, disk, network monitoring
# Service health checks (Nginx, MySQL, PHP-FPM)
# SSL expiration alerts
# Alerts: Email, Slack, Discord, Telegram

Best Practices

• Use SSH key management through Moss dashboard
• Enable automatic OS security updates
• Configure database backup schedules
• Review audit log regularly for suspicious activity
• Use separate database servers for production