Pricing Demo Docs FAQ Sign in

Secure Your Kamal Server

Free Security scans, no credit card required.

Using Kamal but losing sleep over server security? DHH says "just lock the door". But which locks should you use? Where do they go? How do you know they're even working?

TetsuVPS is the answer. Scan your server for security vulnerabilities for free, then fix them all with one click. Tetsu automatically applies the same security measures that protect Fortune 500 companies. Based on NSA standards and more [1]. Stop worrying. Start shipping.

Get started View demo
TetsuVPS Security Scan Results Dashboard

Why Kamal Needs TetsuVPS

Kamal has revolutionized deployment by making it dead simple to ship Docker containers to any server. But while Kamal handles deployment brilliantly, it leaves server security up to you. That's where most teams struggle—turning a fresh Ubuntu server into a hardened production environment requires deep security expertise.

Enter TetsuVPS. Iv've taken the dev-sec.io hardening framework—the same open-source security baseline trusted by Fortune 500 companies and major enterprises—and adapted it specifically for Kamal deployments. This framework implements the Ubuntu Security Features and NSA Guide to Secure Configuration, providing over 130 security checks and automated fixes.

Instead of manually configuring fail2ban, setting up UFW rules, hardening SSH, or wrestling with AppArmor profiles, TetsuVPS handles it all with a single click. It ensure your Kamal Setup is production-ready without breaking Docker networking or interfering with your deployment workflow. Simply connect your server, run a scan, and apply enterprise-grade hardening tailored for containerized applications.

The dev-sec.io Advantage

The dev-sec.io[1] project provides battle-tested security baselines used in production by major enterprises. However, implementing these baselines typically requires deep knowledge of Ansible, InSpec, and Python—plus hours of configuration and testing to make it work with Kamal. Most teams using Kamal don't have dedicated security engineers or the time to implement these frameworks properly.

TetsuVPS bridges this gap. Iv've pre-configured the entire dev-sec.io hardening suite to work seamlessly with Kamal and Docker. No Ansible playbooks to debug, no Python environments to manage, no InSpec profiles to write. Just connect your server and click "Apply Hardening" to get the same security standards used by enterprises worldwide.

What makes TetsuVPS unique is is the focus on Kamal compatibility. I ensure that security hardening doesn't break your deployments—Docker networking remains intact, ports stay accessible as configured, and your containers run smoothly. It's enterprise security made simple, specifically for the modern Kamal workflow.

Built for Kamal

Enterprise-Grade Server Hardening

Based on the dev-sec.io framework used by Fortune 500 companies and major enterprises, now optimized for Kamal deployments with one-click remediation

Kamal-aware hardening.
Security configurations that preserve Docker networking and Kamal deployment workflows.
Enterprise standards.
Implements Ubuntu Security Features and NSA Secure Configuration Guide.
TetsuVPS Server Hardening Interface

Start a Scan for free

Start with a free security scan of your Kamal servers. No credit card required.

Have questions? Check the FAQ

Secure Your Kamal Server Learn about dev-sec.io