ModSecurity in Web Hosting
We offer ModSecurity with all web hosting packages, so your web applications will be resistant to harmful attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you shall be able to stop it through the respective area of your Hepsia CP. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you shall discover within Hepsia are very detailed and feature data about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so on. We employ a group of commercial rules which are frequently updated, but sometimes our admins include custom rules as well in order to efficiently protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
Any web application which you install inside your new semi-dedicated hosting account will be protected by ModSecurity since the firewall comes with all our hosting plans and is activated by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated area inside Hepsia where not only can you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall won't block anything, but it shall still keep a record of potential attacks. This normally requires just a mouse click and you shall be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall employs two groups of rules on our machines - a commercial one that we get from a third-party web security company and a custom one that our admins update manually as to respond to recently discovered risks as fast as possible.
ModSecurity in VPS
ModSecurity is provided with all Hepsia-based virtual private servers we offer and it shall be turned on automatically for any new domain or subdomain which you add on the server. This way, any web application you install will be secured right from the start without doing anything by hand on your end. The firewall may be managed from the section of the Control Panel that has the same name. This is the location whereyou could switch off ModSecurity or enable its passive mode, so it will not take any action against threats, but will still keep a detailed log. The recorded data is available inside the same area as well and you will be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we employ on our servers are a blend between commercial ones that we obtain from a security company and custom ones which are added by our administrators to maximize the security of any web applications hosted on our end.
ModSecurity in Dedicated Hosting
All our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any application which you upload or set up will be secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. An individual section inside Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you shall discover in the logs shall help you to secure your websites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this information, you can see if a site needs an update, if you ought to block IPs from accessing your hosting server, etcetera. On top of the third-party commercial security rules for ModSecurity we use, our admins add custom ones too if they come across a new threat that's not yet in the commercial bundle.