ModSecurity

: Terminology; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Get Started

ModSecurity is a highly effective firewall for Apache web servers that's employed to stop attacks against web apps. It keeps track of the HTTP traffic to a certain site in real time and blocks any intrusion attempts the moment it identifies them. The firewall uses a set of rules to do this - as an example, trying to log in to a script administrator area without success many times triggers one rule, sending a request to execute a certain file which could result in accessing the site triggers a different rule, and so on. ModSecurity is among the best firewalls around and it'll preserve even scripts which aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Very detailed data about each intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the regular logs created by the Apache server, so you may later take a look at them and decide if you need to take additional measures so as to enhance the security of your script-driven websites.

ModSecurity in Cloud Hosting

ModSecurity is provided with all cloud hosting web servers, so when you opt to host your sites with our organization, they will be shielded from a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you'll need to do on your end. You'll be able to stop ModSecurity for any website if needed, or to activate a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You shall be able to view specific logs through your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the safety of our customers' sites very seriously, we use a collection of commercial rules that we get from one of the best companies which maintain this type of rules. Our admins also add custom rules to make certain that your Internet sites shall be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages that we offer include ModSecurity and because the firewall is turned on by default, any site which you create under a domain or a subdomain will be secured straight away. An individual section within the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it shall permit you to start and stop the firewall for any website or enable a detection mode. With the last mentioned, ModSecurity shall not take any action, but it will still recognize possible attacks and shall keep all information within a log as if it were fully active. The logs could be found inside the very same section of the Control Panel and they feature info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we use on our servers are a mix between commercial ones from a security business and custom ones made by our system admins. As a result, we provide increased security for your web apps as we can protect them from attacks before security corporations release updates for brand new threats.

ModSecurity in VPS Web Hosting

ModSecurity is provided with all Hepsia-based virtual private servers that we offer and it'll be switched on automatically for every new domain or subdomain you include on the server. This way, any web app which you install shall be protected from the very beginning without doing anything by hand on your end. The firewall may be managed from the section of the CP that bears the same name. This is the area whereyou can disable ModSecurity or activate its passive mode, so it will not take any action against threats, but will still keep a thorough log. The recorded data is available within the same area as well and you shall be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules we employ on our servers are a mixture between commercial ones that we obtain from a security company and custom ones that are added by our admins to improve the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers Hosting

When you opt to host your sites on a dedicated server with the Hepsia CP, your web apps will be secured immediately since ModSecurity is available with all Hepsia-based packages. You shall be able to regulate the firewall effortlessly and if needed, you shall be able to turn it off or activate its passive mode when it will only maintain a log of what's going on without taking any action to stop possible attacks. The logs which you can find within the exact same section of the CP are really detailed and contain details about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etc. This info will permit you to take measures and enhance the protection of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our staff add when they detect attacks that haven't yet been included inside the commercial pack.