ModSecurity

: Hosting Terminology; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Purchase

ModSecurity is an effective firewall for Apache web servers that is employed to prevent attacks toward web applications. It monitors the HTTP traffic to a certain Internet site in real time and prevents any intrusion attempts the instant it identifies them. The firewall uses a set of rules to do that - for example, trying to log in to a script administrator area unsuccessfully a few times triggers one rule, sending a request to execute a certain file which may result in getting access to the website triggers another rule, and so on. ModSecurity is amongst the best firewalls out there and it'll preserve even scripts that are not updated regularly because it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive information about every single intrusion attempt is recorded and the logs the firewall keeps are far more specific than the standard logs created by the Apache server, so you may later analyze them and determine whether you need to take extra measures in order to enhance the security of your script-driven Internet sites.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting solutions that we offer and it will be switched on automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and deactivate it with just a click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your Internet sites shall include in-depth information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are frequently updated and consist of both commercial ones we get from a third-party security firm and custom ones which our system administrators include in the event that they detect a new type of attacks. This way, the Internet sites which you host here shall be a lot more protected with no action needed on your end.

ModSecurity in Semi-dedicated Servers

Any web program you set up in your new semi-dedicated server account shall be protected by ModSecurity as the firewall is included with all our hosting solutions and is turned on by default for any domain and subdomain you include or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated section inside Hepsia where not simply could you activate or deactivate it completely, but you can also enable a passive mode, so the firewall shall not block anything, but it will still maintain an archive of possible attacks. This normally requires simply a mouse click and you'll be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall uses two sets of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one that our admins update manually in order to respond to recently discovered threats as fast as possible.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers which we offer and it shall be activated automatically for any new domain or subdomain you include on the server. In this way, any web app which you install shall be secured immediately without doing anything by hand on your end. The firewall could be managed through the section of the CP that has the same name. This is the location in whichyou could switch off ModSecurity or activate its passive mode, so it shall not take any action against threats, but shall still keep a detailed log. The recorded information is available in the same section as well and you shall be able to see what IPs any attacks originated from to enable you to stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we use on our servers are a blend between commercial ones which we get from a security company and custom ones which are added by our staff to enhance the security of any web applications hosted on our end.

ModSecurity in Dedicated Servers

When you choose to host your Internet sites on a dedicated server with the Hepsia CP, your web programs will be protected right away because ModSecurity is supplied with all Hepsia-based solutions. You shall be able to manage the firewall effortlessly and if necessary, you'll be able to turn it off or enable its passive mode when it shall only maintain a log of what is taking place without taking any action to prevent possible attacks. The logs that you can find in the same section of the Control Panel are quite detailed and feature details about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, etc. This data shall allow you to take measures and improve the security of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our admins add when they recognize attacks which haven't yet been included inside the commercial pack.