FAQ

Answers to your
questions

Common questions about Optimux security scanning, monitoring, pricing, and setup, all in one place.

FAQ

Frequently asked questions

Everything you need to know about Optimux.

Optimux is a cloud platform for Linux server security and monitoring. It brings vulnerability (CVE) scanning, security audits, server and uptime monitoring, SSL grading, port and DNS checks, and automated updates into one dashboard, with real infrastructure engineers backing every account. You install a lightweight agent on each server and manage your whole fleet from a single place.

Optimux covers server metrics (CPU, memory, disk, load), security audits, OS and application CVE scanning, website uptime across HTTP, HTTPS, TCP, ping and keyword checks, SSL certificate grade and expiry, open ports, and DNS records including SPF, DKIM, DMARC, CAA and blacklist checks, plus pending system updates - all from one dashboard.

Yes, on dedicated and bare-metal servers. Optimux tracks CPU and disk temperatures, per-disk health and wear (SMART), memory (ECC) errors, RAID array status, fan speeds, and power and baseboard (IPMI) sensors, with temperature trends over time. You set warning and critical thresholds per server, and alerts fire on overheating, a worn or failing disk, a stalled fan, a power or voltage problem, a PCIe link error, or a filesystem the kernel forced read-only, before any of it takes a server offline. Virtual machines do not expose these sensors, so they show their virtual specs instead.

A lightweight agent connects to the Optimux platform over TLS-encrypted channels and runs read-only security checks. Only whitelisted commands are executed - zero wildcards, no arbitrary code. Your servers stay untouched.

Yes. Every scan is read-only and non-destructive. The agent runs as a non-root user with minimal permissions, uses TLS 1.3 encryption, and authenticates with constant-time token comparison.

Optimux supports the most widely used Linux distributions in production: Ubuntu, Debian, AlmaLinux, Rocky Linux, RHEL, and CentOS. Both x86_64 and ARM64 (aarch64) servers are supported, so ARM machines like Ampere Altra, AWS Graviton, and Hetzner CAX work exactly the same as x86.

Yes. Optimux runs on ARM64 (aarch64) Linux servers with the same security scanning and monitoring as x86_64, at no extra cost. Ampere Altra, AWS Graviton, Hetzner CAX, and other ARM-based instances are supported on the usual distributions.

Most monitoring tools focus on metrics alone. Optimux combines security scanning, CVE detection, uptime monitoring, DNS validation, SSL grading, port monitoring, and automated patching in a single platform - backed by real infrastructure engineers when you need hands-on help.

You are notified within seconds. Optimux runs continuous health checks and multi-protocol uptime monitoring. When a failure is detected, alerts fire immediately to your configured channels - Email, Slack, Telegram, Discord, or webhooks - with built-in escalation if no one responds.

Optimux uses a 3-phase approach: collect installed packages, query the OSV.dev vulnerability database, then verify each CVE against your specific distribution's security tracker. This eliminates the false positives that waste your team's time with generic scanners.

All connections use TLS 1.3 encryption. Authentication relies on constant-time token comparison to prevent timing attacks. Multi-tenant data isolation ensures your information is never accessible to other organizations. We do not use third-party analytics or tracking.

The agent is a lightweight static Go binary with a small runtime footprint. It runs as a dedicated non-root user with no shell access and is configured with a 256 MB memory cap and 50% CPU quota in systemd, so it stays out of your way and cannot compete with your application workloads.

No. Optimux is a managed cloud platform. You add a lightweight agent to each server and run everything from the hosted dashboard, so there is nothing for you to operate or maintain yourself. Your data is isolated per organization and encrypted in transit.

Optimux focuses on Linux, on both x86_64 and ARM64 hardware. It supports the most common production distributions: Ubuntu, Debian, AlmaLinux, Rocky Linux, RHEL, and CentOS. Windows servers are not supported today.

Most teams are running in a few minutes. You create an account, add a server, and install the agent with a single command. Scans and monitoring start automatically, so you get your first results without manual configuration.

Optimux is built for startups, small and medium businesses, agencies, and managed service providers who run production Linux servers and want security scanning, monitoring, and patching in one place, without an enterprise budget or a dedicated security team.

Yes. Alongside operating-system CVE scanning, Optimux detects known vulnerabilities in your application dependencies by reading common lock files such as Composer, npm, Yarn, and pnpm, then matching them against public vulnerability databases. You see both OS and application CVEs per server.

Yes, and no credit card is required. The Free plan covers 1 server, 5 uptime monitors, and 5 port monitors, with weekly security scans (managed SSL certificate monitoring is a paid feature). It is a limited tier: you always see how many critical and high issues exist, but their details, monitoring history beyond the last 24 hours, and alerts beyond critical email are paid features. Critical alerts still reach you by email, and your dashboard keeps working. Upgrade anytime to unlock the details and add capacity.

Yes. You can upgrade, downgrade, or cancel directly from your dashboard. Upgrades take effect immediately with prorated billing. Downgrades take effect at the end of the current billing period, and any unused credit is applied to your next invoice.

Your infrastructure is organized as Organization, then Project, then Server. Each project gets its own notification channels, alert templates, and SMTP settings. Data is strictly isolated - no cross-tenant access is possible.

Over 20 alert types cover security vulnerabilities, uptime failures, SSL expiry, port changes, DNS misconfigurations, metric threshold breaches, and more. Every alert supports acknowledgment tracking, team notes, and automatic recovery notifications.

Optimux validates your server before applying any update (pre-check), installs patches via your package manager, then runs a post-check and automatic security re-scan. A full audit trail is kept for every update, so you always know what changed and when.

Yes. Webhook notifications let you connect Optimux with any external system - CI/CD pipelines, incident managers, or internal dashboards - alongside native integrations for Email, Slack, Telegram, and Discord.

Yes. Business Managed plans include escalation and team-backed support from our infrastructure engineers. Free and Business plans use standard email support with published response times.

All major credit and debit cards via Stripe. Billing is processed in EUR, with monthly or annual cycles available. EU B2B customers with a valid VAT number benefit from reverse charge automatically, and every invoice includes full legal details for your accounting.

Optimux starts free for 1 server with no credit card. Paid plans are billed in EUR: Business is €15 per month (€13 per month billed annually) for 2 servers, and Business Managed is €35 per month (€30 per month billed annually) for 8 servers with higher capacity, longer retention, and hands-on support. Add-ons let you add servers, websites, ports, and retention without changing plan.

No. The Free plan needs no credit card. You only add payment details if and when you choose to upgrade to a paid plan.

Business (€15 per month) covers 2 servers with full CVE details, full monitoring history, multi-channel alerts, and update execution. Business Managed (€35 per month) raises capacity to 8 servers, adds daily security scanning, longer data retention, and hands-on support and escalation from Private Devops engineers.

Downgrades take effect at the end of your billing period, and any unused credit is applied to your next invoice. If you cancel, your account moves to the Free limits and data is kept according to your plan retention window. You can export your data at any time, and account deletion is available on request.

Your servers deserve
better than hope.

Replace your patchwork of monitoring tools with one platform that covers security, uptime, vulnerabilities, and compliance - backed by a team that has your back.

Live in under 5 minutesFree plan - no credit card neededAI + real engineering expertiseWe welcome your feedback

Built with AI and years of hands-on infrastructure experience. Help us improve - we value every piece of feedback.