ModSecurity

: Hosting Definitions; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is an effective firewall for Apache web servers that's used to prevent attacks toward web applications. It keeps track of the HTTP traffic to a specific site in real time and prevents any intrusion attempts as soon as it detects them. The firewall relies on a set of rules to accomplish that - as an example, attempting to log in to a script administrator area unsuccessfully a few times activates one rule, sending a request to execute a particular file that may result in getting access to the Internet site triggers another rule, and so on. ModSecurity is one of the best firewalls around and it'll secure even scripts that are not updated regularly because it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive info about each intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the conventional logs generated by the Apache server, so you can later examine them and determine if you need to take more measures so as to enhance the protection of your script-driven websites.

ModSecurity in Shared Hosting

ModSecurity comes standard with all shared hosting solutions that we provide and it shall be activated automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you can switch on and disable it with a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it will not do anything to prevent them. The log for each of your Internet sites will contain comprehensive information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are regularly updated and include both commercial ones which we get from a third-party security firm and custom ones that our system administrators include in the event that they detect a new type of attacks. In this way, the websites which you host here shall be way more secure with no action required on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages that we offer include ModSecurity and since the firewall is enabled by default, any website which you create under a domain or a subdomain will be protected right from the start. An individual section within the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to stop and start the firewall for any website or activate a detection mode. With the last option, ModSecurity shall not take any action, but it will still recognize possible attacks and shall keep all data within a log as if it were completely active. The logs can be found within the exact same section of the Control Panel and they include information about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules that we employ on our web servers are a mix between commercial ones from a security firm and custom ones developed by our system admins. Consequently, we provide increased security for your web programs as we can protect them from attacks even before security businesses release updates for completely new threats.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting Control Panel, so your web applications shall be protected from the second your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you could deactivate it with a click through the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found inside the exact same section and include info about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For best security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones which our administrators add manually in order to respond to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity is available by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain which you create on the web server. In the event that a web application doesn't work adequately, you may either disable the firewall or set it to work in passive mode. The latter means that ModSecurity will keep a log of any possible attack which might happen, but shall not take any action to prevent it. The logs generated in passive or active mode will offer you additional details about the exact file that was attacked, the nature of the attack and the IP address it came from, etc. This info shall allow you to choose what actions you can take to increase the protection of your websites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules which we employ are updated constantly with a commercial pack from a third-party security company we work with, but from time to time our staff add their own rules as well when they come across a new potential threat.