Architecture and Security

Uptime Guarantee

We provide hosting via multiple providers: AWS, Digital Ocean and OCI; AWS being the most prominent. The uptime we can provide is subject to the same:

Rough uptime as specified by the providers

Please visit the links below for the most up-to-date information on uptime guarantees provided by each of the providers. The uptime guarantee is not a guarantee of service availability, but rather a commitment to maintain a certain level of service reliability.

Provider Uptime Guarantee
AWS 99.0 - 99.5%
Digital Ocean 99.99%
OCI 99.9%

We also do our own monitoring of uptime of each server's sites and notify users via email if their server is consistently down. We also notify our engineers over call if server is down for longer.

Maintenance Windows

No specific policy is in place for maintenance windows as the nature of the same varies. We inform users beforehand via email about the possibility of (varying) downtime when performing said activities.

Network Security

We use a combination of security groups and firewalls to secure our networks. We also use VPCs to isolate our resources and restrict access to them. Only necessary ports are open to the public internet, and all other ports are blocked by default.

Access Management

We use ssh with certificates and/or public keys for access to servers. We don’t use passwords for the same. Users can only access benches with ssh certificates.

Cryptography

We use https for all communication over the internet. SSH is also encrypted. Site Backups are unencrypted by default. Users can choose to enable encryption by following documentation.

Multi-Factor Authentication

We have 2FA for all logins to 3rd party services that we use.

Anti Virus Solutions

We have clam av installed on all servers, but regular scans are not yet implemented in favor of performance

Backup & Recovery Management

We take logical site backups as per policy. We also take server-wide snapshots on daily basis.

Patch Management Solution

We use unattended upgrades to deploy patches automatically on daily basis on all servers.

Disaster Recovery

Since we maintain server-wide multi-AZ snapshots that is taken on daily basis. We plan to restore the same in the case of disaster.

For KSA, the backups are not multi-AZ yet. However, we intend to improve this in the future. Reference

Is EBS volume/Storage attached to Frappe Cloud instance is encrypted?

No, EBS volume/storage attached to Frappe Cloud instance is not encrypted.

Discard
Save
Draft
This page has been updated since your last edit. Your draft may contain outdated content. Load Latest Version
Was this article helpful?

Previous Page

Left

Next Page

Right

On this page

Review Changes ← Back to Content
Message Status Space Raised By Last update on