ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Buy Now

ModSecurity is an effective firewall for Apache web servers which is used to stop attacks towards web apps. It tracks the HTTP traffic to a specific Internet site in real time and stops any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to accomplish that - for instance, attempting to log in to a script administration area unsuccessfully several times triggers one rule, sending a request to execute a particular file that may result in accessing the site triggers a different rule, etc. ModSecurity is among the best firewalls available and it'll protect even scripts which are not updated on a regular basis as it can prevent attackers from using known exploits and security holes. Quite detailed data about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the regular logs created by the Apache server, so you may later analyze them and determine whether you need to take more measures in order to boost the protection of your script-driven sites.

ModSecurity in Shared Website Hosting

ModSecurity comes standard with all shared website hosting plans which we provide and it'll be activated automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and disable it with only a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it will not do anything to stop them. The log for any of your sites shall feature comprehensive info including the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules which we use are constantly updated and comprise of both commercial ones that we get from a third-party security business and custom ones which our system admins include in case that they detect a new sort of attacks. That way, the websites you host here will be way more secure with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

Any web program that you install in your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting packages and is activated by default for any domain and subdomain which you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area inside Hepsia where not simply can you activate or deactivate it completely, but you may also switch on a passive mode, so the firewall shall not stop anything, but it will still keep an archive of possible attacks. This requires only a click and you shall be able to look at the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, and so forth. The firewall employs 2 sets of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one that our admins update manually in order to respond to newly discovered risks as soon as possible.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web programs will be protected from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you'll be able to deactivate it with a click through the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs can be found within the very same section and provide information regarding the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For best security, we employ not simply commercial rules from a company operating in the field of web security, but also custom ones our administrators include personally so as to respond to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any program you upload or install will be secured from the very beginning and you'll not have to bother about common attacks or vulnerabilities. A separate section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you shall discover in the logs can allow you to to secure your Internet sites better - the IP address an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this info, you could see whether an Internet site needs an update, whether you ought to block IPs from accessing your web server, and so forth. In addition to the third-party commercial security rules for ModSecurity which we use, our admins include custom ones as well every time they find a new threat which is not yet in the commercial bundle.