ModSecurity

: Terminology; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is an effective firewall for Apache web servers that is used to prevent attacks against web applications. It keeps track of the HTTP traffic to a particular website in real time and prevents any intrusion attempts the instant it discovers them. The firewall uses a set of rules to accomplish that - as an example, attempting to log in to a script administration area unsuccessfully a few times activates one rule, sending a request to execute a particular file which could result in getting access to the site triggers a different rule, and so on. ModSecurity is amongst the best firewalls available on the market and it will secure even scripts that aren't updated often because it can prevent attackers from using known exploits and security holes. Quite detailed info about each and every intrusion attempt is recorded and the logs the firewall maintains are far more comprehensive than the regular logs provided by the Apache server, so you may later analyze them and decide whether you need to take more measures in order to enhance the security of your script-driven sites.

ModSecurity in Shared Hosting

We provide ModSecurity with all shared hosting packages, so your Internet apps shall be shielded from malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you shall be able to stop it via the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you shall find inside Hepsia are incredibly detailed and feature info about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, and so forth. We use a group of commercial rules that are frequently updated, but sometimes our admins include custom rules as well in order to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting packages and if you decide to host your Internet sites with us, there won't be anything special you will have to do given that the firewall is activated by default for all domains and subdomains which you include using your hosting CP. If needed, you'll be able to disable ModSecurity for a particular site or activate the so-called detection mode in which case the firewall will still function and record information, but won't do anything to prevent potential attacks on your Internet sites. Thorough logs shall be readily available inside your Control Panel and you'll be able to see what sort of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks originated from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom ones that our admins sometimes include to respond to newly found risks in a timely manner.

ModSecurity in VPS

Protection is essential to us, so we set up ModSecurity on all virtual private servers which are provided with the Hepsia CP by default. The firewall could be managed through a dedicated section in Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't have to do anything personally. You shall also be able to disable it or switch on the so-called detection mode, so it shall maintain a log of potential attacks that you can later analyze, but will not block them. The logs in both passive and active modes offer details regarding the form of the attack and how it was prevented, what IP it originated from and other valuable information which might help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. Besides the commercial rules we get for ModSecurity from a third-party security firm, we also use our own rules since every now and then we detect specific attacks which are not yet present within the commercial pack. That way, we can easily boost the protection of your VPS right away as opposed to waiting for an official update.

ModSecurity in Dedicated Hosting

All our dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any app which you upload or install will be secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you shall discover in the logs can easily help you to secure your sites better - the IP address an attack came from, what website was attacked and how, what ModSecurity rule was triggered, and so forth. With this information, you can see whether a site needs an update, whether you need to block IPs from accessing your server, and so on. On top of the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too when they discover a new threat that is not yet a part of the commercial bundle.