ModSecurity

: Hosting Terminology; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is a highly effective firewall for Apache web servers which is employed to prevent attacks against web applications. It tracks the HTTP traffic to a specific site in real time and blocks any intrusion attempts the instant it detects them. The firewall relies on a set of rules to do this - for instance, trying to log in to a script administration area without success several times sets off one rule, sending a request to execute a particular file which could result in getting access to the website triggers a different rule, etcetera. ModSecurity is among the best firewalls available on the market and it'll protect even scripts which aren't updated regularly as it can prevent attackers from using known exploits and security holes. Very thorough information about every single intrusion attempt is recorded and the logs the firewall keeps are much more comprehensive than the standard logs created by the Apache server, so you could later analyze them and determine whether you need to take additional measures so as to increase the security of your script-driven websites.

ModSecurity in Shared Web Hosting

ModSecurity is offered with each and every shared web hosting solution which we offer and it's switched on by default for every domain or subdomain which you include via your Hepsia CP. If it interferes with any of your apps or you would like to disable it for some reason, you shall be able to achieve that through the ModSecurity area of Hepsia with merely a click. You could also enable a passive mode, so the firewall will recognize potential attacks and keep a log, but shall not take any action. You can see detailed logs in the exact same section, including the IP address where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, etc. For max safety of our clients we use a collection of commercial firewall rules blended with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web program which you set up inside your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is provided with all our hosting plans and is switched on by default for any domain and subdomain you add or create using your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated section within Hepsia where not only could you activate or deactivate it fully, but you can also enable a passive mode, so the firewall won't block anything, but it will still keep a record of possible attacks. This requires simply a click and you will be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, etcetera. The firewall employs two sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our administrators update personally as to respond to recently discovered risks immediately.

ModSecurity in VPS

ModSecurity is included with all Hepsia-based virtual private servers that we offer and it will be activated automatically for every new domain or subdomain that you add on the hosting server. That way, any web application that you install shall be protected right away without doing anything by hand on your end. The firewall can be handled from the section of the CP which bears the same name. This is the area whereyou could turn off ModSecurity or activate its passive mode, so it will not take any action toward threats, but will still keep a comprehensive log. The recorded information is available within the same section as well and you'll be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we employ on our servers are a combination between commercial ones that we get from a security company and custom ones which are included by our administrators to maximize the security of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

All our dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any application which you upload or install shall be protected from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. A separate section within Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to stop them. What you will find in the logs can allow you to to secure your sites better - the IP address an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, and so on. With this data, you could see if a website needs an update, if you need to block IPs from accessing your hosting server, etc. On top of the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too when they find a new threat which is not yet in the commercial bundle.