ModSecurity

: Glossary; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It's used to stop attacks toward script-driven sites by using security rules that contain certain expressions. That way, the firewall can stop hacking and spamming attempts and shield even websites which are not updated on a regular basis. For example, several failed login attempts to a script admin area or attempts to execute a specific file with the purpose to get access to the script will trigger particular rules, so ModSecurity shall block out these activities the second it identifies them. The firewall is very efficient because it monitors the entire HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It also keeps an incredibly comprehensive log of all attack attempts which features more info than conventional Apache logs, so you can later examine the data and take further measures to enhance the security of your Internet sites if required.

ModSecurity in Shared Website Hosting

ModSecurity is provided with all shared website hosting servers, so when you decide to host your Internet sites with our business, they'll be protected against a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you will need to do on your end. You'll be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You shall be able to view comprehensive logs via your Hepsia CP including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity dealt with the threat. As we take the safety of our customers' websites very seriously, we use a collection of commercial rules that we get from one of the best firms that maintain this kind of rules. Our administrators also include custom rules to ensure that your websites shall be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer come with ModSecurity and since the firewall is turned on by default, any Internet site you set up under a domain or a subdomain will be protected right away. An individual section within the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it will allow you to start and stop the firewall for any website or enable a detection mode. With the last option, ModSecurity won't take any action, but it will still identify possible attacks and will keep all info in a log as if it were completely active. The logs could be found inside the same section of the Control Panel and they offer information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules we employ on our web servers are a mix between commercial ones from a security firm and custom ones created by our system admins. As a result, we offer greater security for your web programs as we can defend them from attacks even before security firms release updates for completely new threats.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting CP, so your web programs shall be protected from the instant your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you can deactivate it with a mouse click via the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs can be found in the same section and provide info about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For best security, we use not simply commercial rules from a business operating in the field of web security, but also custom ones which our admins include personally in order to respond to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

When you decide to host your sites on a dedicated server with the Hepsia CP, your web applications will be secured immediately since ModSecurity is available with all Hepsia-based packages. You'll be able to manage the firewall with ease and if necessary, you'll be able to turn it off or switch on its passive mode when it shall only maintain a log of what's occurring without taking any action to prevent possible attacks. The logs which you can find within the very same section of the Control Panel are very detailed and feature information about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, etcetera. This info shall enable you to take measures and improve the protection of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our admins add whenever they recognize attacks that haven't yet been included within the commercial pack.