ranjan@ranjan.info:~$ man services/managed-administration

Managed Server Administration

Your servers, watched and maintained — so your team ships instead

Server administration is a stream of small, unglamorous tasks — patches, certificate renewals, disk alerts, backup checks — that cost nothing until the month they cost everything. A retainer puts those on my desk: monitored around the clock, maintained on schedule, and answered by someone who already knows your stack when something breaks at 3 am.

What is managed server administration?

Managed server administration is ongoing operational ownership of your Linux servers by an engineer: 24×7 monitoring with real alerting, scheduled patching, backups that are restore-tested rather than assumed, and incident response from someone who already knows your environment. It replaces the "everyone and no one" model of server ops with a flat monthly retainer and response times in writing.

Written by Ranjan Chatterjee, Infrastructure Consultant · Linux Server Specialist · 15+ years in production Linux · Last reviewed

ranjan@ranjan.info:~$ dmesg | tail

Signs you need this now

Server administration fails quietly — right up until it doesn't. These are the signs it's currently nobody's actual job.

  • Nobody is formally responsible for the servers — it's whoever's free
  • Patches are months behind because updating feels risky
  • Backups run, but no one has restored one in living memory
  • Outages are discovered by customers, not by monitoring
  • 3 am problems land on a founder or the lead developer
  • Certificates, domains, or disks have expired or filled up by surprise
  • The dev team spends its sprints doing ops instead of shipping
  • One departed contractor took the working knowledge with them
ranjan@ranjan.info:~$ cat scope.txt

What this covers

  • 24×7 uptime and resource monitoring with real alerting
  • Proactive maintenance and scheduled health checks
  • OS and panel patch management with change notes
  • Backup management — configured, monitored, and restore-tested
  • Incident response with agreed response times
  • Security watch: log review, scan results, threat response
  • Monthly reporting: what happened, what was done, what's next
ranjan@ranjan.info:~$ grep -i "oops" ~/incidents.log

Mistakes that make ops fragile

Every one of these comes from a real engagement — usually from before I was called.

Assuming the host manages your stack

"Managed hosting" means their hardware and network — your application, your backups, and your security posture are explicitly not in that contract. The gap between those two definitions is where businesses get hurt.

Monitoring without an owner

Dashboards nobody is paged for are decoration. Alerts need a human with authority to act — otherwise the outage is monitored in beautiful detail while nobody responds.

Freezing updates because one broke something

A bad update once, so patching stopped forever — and now the server runs years of known vulnerabilities. The fix is staged, snapshotted patching, not abstinence.

Backups without restore tests

Backup jobs fail silently in a dozen ways: wrong paths, full destinations, corrupted archives. Scheduled restore drills are the only proof — they're built into this retainer, not an optional extra.

Depending on one hero engineer

A single undocumented admin is a single point of failure with a salary. Everything I run is documented into runbooks precisely so the knowledge survives me — that's a feature you should demand from anyone in this seat.

ranjan@ranjan.info:~$ diff --options

DIY, provider support, or a specialist?

An honest comparison — each option is right in some situations, including the free ones.

OptionThe right choice when…Limits & risks
In-house hireEnough servers and change volume to fill a full-time role, plus the need for someone physically embedded in the team.A real sysadmin salary buys a lot of retainer — and one person still can't cover 24×7 alone. Hiring, retention, and coverage gaps are your problem again.
Host's managed planBasic needs entirely inside one provider's platform: OS updates, their control panel, their network. Cheap and zero-effort.Ends at their platform boundary. Your applications, cross-provider pieces, backup verification, and business context are out of scope — and the SLA covers their uptime, not yours.
Independent retainerProduction servers that matter, no appetite for a full-time hire, and a preference for one accountable engineer over a rotating ticket queue.A retainer covers agreed scope — massive new projects are quoted separately. And the model depends on documentation discipline; demand runbooks and reports as deliverables, not promises.

What you get

  • A monitored fleet where problems are found by tooling, not by customers
  • Patching and backups that happen on schedule, with evidence
  • One accountable engineer who knows your environment — not a ticket queue

Why work with me on this

  • 15+ years inside production Linux — this exact work, done at fleet scale
  • Founder-operator of two hosting platforms: I've owned the uptime, not just the ticket
  • Every change documented and reversible — you keep a written trail, not a mystery
  • Plain-language updates and honest timelines you can plan a business around
ranjan@ranjan.info:~$ ./engage --how

How it runs

The same disciplined path on every engagement — scoped, planned, executed with checkpoints, handed off clean.

  1. 01

    Scope

    A short brief or call to understand your stack, the real problem, and what a good outcome looks like.

  2. 02

    Plan

    A clear architecture plan — steps, risks, rollback and timeline — agreed before anything touches production.

  3. 03

    Execute

    Hands-on work with checkpoints. You see progress; nothing changes on your servers silently.

  4. 04

    Handoff

    Documentation, access cleanup and a clear path for what comes next. No lock-in, no mystery.

ranjan@ranjan.info:~$ faq --service managed-administration

Common questions

How is this different from my host's "managed" plan?

Host-managed means their platform stays up; it rarely means your application, backups, and security posture are anyone's job. This retainer makes them someone's job — mine — with your business context attached.

What's actually included each month?

24×7 monitoring with alerting I respond to, OS and panel patching on a schedule, backup management with periodic restore tests, security watch (logs, scans, threat response), proactive maintenance, and a monthly report of what happened and what's next. Larger project work — a migration, a rebuild — is scoped separately so the retainer stays predictable.

What are your actual response times?

Defined per plan and put in writing — critical alerts are acknowledged in minutes, not hours, because monitoring pages me before you notice. The precise SLA depends on fleet size and is agreed up front.

Can you take over servers someone else set up?

Yes — that's the normal case. Onboarding starts with a mini-audit so I know what I'm inheriting, documented before I change anything.

Is there a minimum contract?

No — month-to-month, cancel anytime. Retention through usefulness, not lock-in. The only ask is a short handover window on exit so your documentation and access transfer cleanly.

How many servers can this cover?

From a single production VPS to fleets of dozens — pricing is per server with fleet rates. Past a certain scale the right answer becomes helping you build an internal ops function, and I'll say so rather than stretch the model.

Do we keep full access and ownership?

Always. Servers, credentials, monitoring, and documentation are yours — I work inside your infrastructure, not by moving it into mine. Nothing about the setup depends on staying with me, which is exactly how it should be.

What monitoring tools do you use?

Proven, boring ones — Uptime Kuma or Zabbix class tooling for uptime and resources, log and integrity watching on the security side — installed in your environment under your ownership. Existing monitoring you already like is adopted, not replaced for its own sake.

Are emergencies included in the retainer?

Incidents on covered servers are the core of the retainer — that's what the response SLA is for. Disasters outside scope (a server I don't manage, a compromised laptop, an office network) get emergency help at the standing client rate, prioritized ahead of new work.

What do the monthly reports look like?

One page you can actually read: uptime, incidents and their resolutions, patches applied, backup and restore-test status, and recommendations queued for next month. The goal is that you always know the state of your infrastructure without ever having to ask.

ranjan@ranjan.info:~$ man glossary

Terms from the retainer world

Plain-language definitions — so the report reads like information, not incantation.

SLA
Service Level Agreement — the response and resolution commitments in writing. If it's not written, it's a mood, not an SLA.
MTTR
Mean time to recovery — how fast incidents actually get fixed. The metric that improves most when the responder already knows your stack.
Patch window
A scheduled, snapshotted maintenance slot for updates — how patching happens without fear or surprises.
Runbook
Written procedures for operating your systems: what runs where, how to restart it, who to call. The insurance against key-person risk.
Proactive maintenance
Work done before alerts fire: disk trends, certificate renewals, log rot, capacity planning. The invisible half of the retainer.
Incident response
The agreed process when something breaks: acknowledgment, diagnosis, fix, and a post-incident note on preventing the repeat.
Restore drill
A scheduled test recovery from backups, timed and documented — turning "we have backups" into "we can be back in N minutes".
Month-to-month
No lock-in contract: the retainer renews because it's useful. Alignment by usefulness beats alignment by penalty clause.
ranjan@ranjan.info:~$ ssh [email protected]

Ready when you are

One paragraph is enough: your stack, the symptom, and when you need it solved. Emergencies are answered first.

Managed Administration Book a consultation Emergency