ModSecurity in Web Hosting
We provide ModSecurity with all web hosting solutions, so your web apps shall be protected against harmful attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you will be able to stop it via the respective part of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you will discover inside Hepsia are incredibly detailed and feature info about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, and so on. We employ a range of commercial rules which are often updated, but sometimes our administrators add custom rules as well so as to better protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Servers
We have integrated ModSecurity as a standard in all semi-dedicated server plans, so your web apps shall be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts shall permit you to switch on or turn off the firewall for any site with a mouse click. You'll also have the ability to switch on a passive detection mode with which ModSecurity shall keep a log of possible attacks without really preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response this attack initiated, where it came from, and so on. The list of rules we employ is constantly updated as to match any new threats which might appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our administrators include in case they discover a threat which is not present in the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting Control Panel, so your web applications will be secured from the moment your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you'll be able to deactivate it with a click of your mouse through the corresponding section of Hepsia. You may also set it to work in detection mode, so it'll keep a detailed log of any possible attacks without taking any action to stop them. The logs are available in the same section and offer info about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For optimum security, we employ not simply commercial rules from a firm working in the field of web security, but also custom ones that our admins include manually in order to react to new risks which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
All of our dedicated servers which are set up with the Hepsia hosting CP feature ModSecurity, so any app which you upload or install will be properly secured from the very beginning and you'll not need to stress about common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you shall see in the logs can easily allow you to to secure your Internet sites better - the IP address an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, and so on. With this information, you'll be able to see if a site needs an update, if you should block IPs from accessing your web server, etc. Aside from the third-party commercial security rules for ModSecurity we use, our admins add custom ones too whenever they find a new threat that is not yet a part of the commercial bundle.