ModSecurity

: Terminology; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is an effective firewall for Apache web servers which is used to prevent attacks towards web applications. It monitors the HTTP traffic to a specific Internet site in real time and prevents any intrusion attempts the moment it identifies them. The firewall uses a set of rules to do this - as an illustration, trying to log in to a script admin area unsuccessfully several times activates one rule, sending a request to execute a certain file which could result in getting access to the Internet site triggers a different rule, and so on. ModSecurity is one of the best firewalls on the market and it will protect even scripts which are not updated on a regular basis because it can prevent attackers from using known exploits and security holes. Very detailed info about every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the conventional logs provided by the Apache server, so you can later analyze them and decide if you need to take extra measures so as to enhance the security of your script-driven sites.

ModSecurity in Hosting

ModSecurity comes by default with all hosting solutions that we offer and it'll be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and deactivate it with just a click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to prevent them. The log for any of your sites will contain in-depth info including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are constantly updated and comprise of both commercial ones which we get from a third-party security company and custom ones that our system admins add in the event that they detect a new type of attacks. In this way, the Internet sites which you host here will be much more protected with no action required on your end.

ModSecurity in Semi-dedicated Hosting

Any web program which you set up within your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting solutions and is turned on by default for any domain and subdomain that you include or create using your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated section within Hepsia where not simply can you activate or deactivate it entirely, but you can also switch on a passive mode, so the firewall won't block anything, but it'll still maintain an archive of possible attacks. This requires just a mouse click and you'll be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was taken care of, and so forth. The firewall employs 2 groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one which our admins update manually as to respond to newly discovered risks as quickly as possible.

ModSecurity in VPS Hosting

Protection is of the utmost importance to us, so we set up ModSecurity on all virtual private servers that are provided with the Hepsia CP by default. The firewall could be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you'll not need to do anything manually. You'll also be able to deactivate it or turn on the so-called detection mode, so it shall maintain a log of potential attacks that you can later study, but shall not block them. The logs in both passive and active modes contain details regarding the type of the attack and how it was prevented, what IP address it originated from and other important info that could help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. Besides the commercial rules which we get for ModSecurity from a third-party security enterprise, we also use our own rules because every now and then we discover specific attacks that aren't yet present inside the commercial package. That way, we could improve the protection of your Virtual private server promptly as opposed to waiting for an official update.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia CP and you'll not need to do anything specific on your end to use it since it's turned on by default whenever you include a new domain or subdomain on your server. In the event that it interferes with some of your applications, you will be able to stop it via the respective section of Hepsia, or you can leave it operating in passive mode, so it shall recognize attacks and will still maintain a log for them, but won't stop them. You could analyze the logs later to learn what you can do to boost the protection of your Internet sites since you will find information such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity reacted, etc. The rules which we employ are commercial, therefore they are constantly updated by a security firm, but to be on the safe side, our admins also include custom rules occasionally as to deal with any new threats they have found.