Security

The Security section provides an overview of the security features and best practices for our self-hosted status page software.

Two-Factor Authentication (2FA)

Our self-hosted status page supports security standards such as Two-Factor Authentication (2FA) to enhance account security. We strongly recommend utilizing this feature to secure your account effectively.

Two-Factor Authentication adds an extra layer of security by requiring a second authentication method in addition to your password. This can be an OTP (One-Time Password) generated by an authentication app like Google Authenticator or a text message (SMS) sent to your mobile phone. By utilizing 2FA, even if an attacker gains knowledge of your password, they would still need to overcome an additional authentication method to gain access to your account.

To configure and enable Two-Factor Authentication, all created users can navigate to their profile page at /user/profile. There, they will find the necessary settings and options to set up 2FA. We recommend using an authentication app as it provides a more secure option compared to SMS-based 2FA.

Enabling Two-Factor Authentication helps protect your account and contributes to preventing unauthorized access.

Additional Security Features

For information about restricting access to your status page, see the Private Page feature documentation.