ModSecurity

: Hosting Definitions; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is used to prevent attacks toward script-driven Internet sites by employing security rules that contain particular expressions. This way, the firewall can block hacking and spamming attempts and preserve even websites that are not updated on a regular basis. As an example, numerous failed login attempts to a script administrative area or attempts to execute a certain file with the purpose to get access to the script shall trigger particular rules, so ModSecurity shall stop these activities the minute it detects them. The firewall is very efficient because it tracks the whole HTTP traffic to a site in real time without slowing it down, so it can easily prevent an attack before any damage is done. It furthermore maintains an exceptionally thorough log of all attack attempts that contains more info than conventional Apache logs, so you can later examine the data and take further measures to boost the security of your sites if necessary.

ModSecurity in Cloud Web Hosting

ModSecurity comes standard with all cloud web hosting plans which we provide and it'll be switched on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and deactivate it with a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to prevent them. The log for each of your sites shall include elaborate information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are regularly updated and comprise of both commercial ones that we get from a third-party security business and custom ones which our system administrators include in case that they detect a new type of attacks. That way, the sites that you host here will be far more secure with no action needed on your end.

ModSecurity in Semi-dedicated Servers

Any web program that you set up inside your new semi-dedicated server account will be protected by ModSecurity since the firewall is included with all our hosting solutions and is turned on by default for any domain and subdomain which you include or create using your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated section inside Hepsia where not only could you activate or deactivate it entirely, but you may also enable a passive mode, so the firewall won't stop anything, but it shall still maintain a record of potential attacks. This requires simply a click and you will be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall uses two sets of rules on our servers - a commercial one which we get from a third-party web security company and a custom one which our administrators update manually in order to respond to recently discovered threats immediately.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers we offer and it will be activated automatically for every new domain or subdomain you include on the server. In this way, any web application you install shall be secured right from the start without doing anything by hand on your end. The firewall can be handled through the section of the Control Panel which has the same name. This is the location whereyou can turn off ModSecurity or enable its passive mode, so it won't take any action against threats, but will still keep a detailed log. The recorded information is available in the same area as well and you shall be able to see what IPs any attacks originated from so that you stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules that we employ on our servers are a blend between commercial ones that we obtain from a security organization and custom ones which are added by our admins to optimize the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are set up with our Hepsia CP and you'll not need to do anything specific on your end to use it as it's turned on by default every time you add a new domain or subdomain on your hosting server. If it disrupts some of your apps, you'll be able to stop it through the respective section of Hepsia, or you can leave it in passive mode, so it shall detect attacks and shall still maintain a log for them, but shall not block them. You can look at the logs later to find out what you can do to boost the security of your websites as you'll find information such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity reacted, and so forth. The rules that we use are commercial, hence they're constantly updated by a security firm, but to be on the safe side, our staff also add custom rules occasionally in order to react to any new threats they have discovered.