Linode is committed to the security of our infrastructure and our users' data. Every component of our infrastructure has been designed to give you the foundation to build secure systems and applications to meet your needs.
Security is a shared responsibility at Linode. We control the physical hosts up to the hypervisor and can offer a high level of physical and environmental security with both our compute and storage offerings. You're responsible for making sure your Linode’s installed applications and code are securely configured and patched. By following best practices, you can build environments to meet the exacting standards required by HIPAA, PCI-DSS, GDPR, and your customers.
Linode is constantly scanning our networks and systems supporting your Linodes to ensure that systems under our control are configured correctly and are up-to-date with patches. Here's what we currently do to protect the infrastructure:
Please report any security vulnerabilities via our disclosure program, which outlines how you can contact our security team.
Each of our data centers has extensive physical, environmental, and network capabilities in place:
The data centers listed below have the following certifications:
Atlanta
Dallas
Frankfurt
Fremont
London
Mumbai
Newark
Singapore
Sydney
Tokyo
Toronto
Linode’s compliance information can be found here.
For some guidance on how to harden your systems, start here:
For more advanced security guidance, we recommend following an industry accepted hardening standard. The two most accepted are the Center for Internet Security Benchmarks and the Defense Information Systems Agency's Security Technical Implementation Guides (DISA STIG).
Both the CIS Benchmarks and DISA STIGs include hardening guidance on operating systems and common applications. Following these guidelines go far to reduce the risk of compromise of your systems and infrastructure.