ModSecurity

: Hosting Terminology; Disk Space; Hepsia Control Panel; Hosted Domains; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is an efficient firewall for Apache web servers which is employed to stop attacks against web apps. It keeps track of the HTTP traffic to a certain Internet site in real time and blocks any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to do this - as an example, trying to log in to a script admin area unsuccessfully a few times triggers one rule, sending a request to execute a certain file which may result in gaining access to the Internet site triggers another rule, etcetera. ModSecurity is among the best firewalls on the market and it will preserve even scripts that are not updated frequently because it can prevent attackers from using known exploits and security holes. Incredibly comprehensive data about every single intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the conventional logs generated by the Apache server, so you could later take a look at them and determine if you need to take additional measures in order to increase the protection of your script-driven websites.

ModSecurity in Cloud Website Hosting

ModSecurity is available with each cloud website hosting solution which we offer and it is activated by default for any domain or subdomain which you include via your Hepsia CP. If it interferes with any of your programs or you would like to disable it for some reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with merely a mouse click. You can also activate a passive mode, so the firewall will discover potential attacks and maintain a log, but won't take any action. You could see comprehensive logs in the very same section, including the IP where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etcetera. For optimum safety of our customers we use a collection of commercial firewall rules mixed with custom ones which are included by our system admins.

ModSecurity in Semi-dedicated Hosting

Any web application you set up in your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall is provided with all our hosting plans and is turned on by default for any domain and subdomain which you add or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated area inside Hepsia where not only could you activate or deactivate it fully, but you may also enable a passive mode, so the firewall will not block anything, but it'll still maintain a record of potential attacks. This takes only a mouse click and you will be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, and so forth. The firewall uses 2 sets of rules on our servers - a commercial one which we get from a third-party web security company and a custom one that our admins update manually in order to respond to newly discovered risks immediately.

ModSecurity in VPS Hosting

ModSecurity is provided with all Hepsia-based virtual private servers that we offer and it will be switched on automatically for every new domain or subdomain you include on the hosting server. That way, any web application you install shall be protected immediately without doing anything personally on your end. The firewall could be managed through the section of the Control Panel that bears the same name. This is the place whereyou'll be able to disable ModSecurity or enable its passive mode, so it won't take any action against threats, but will still maintain a detailed log. The recorded data is available inside the same section as well and you will be able to see what IPs any attacks originated from so that you block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules that we use on our servers are a mix between commercial ones which we obtain from a security company and custom ones which are added by our administrators to improve the protection of any web applications hosted on our end.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain that you create on the server. In the event that a web app doesn't operate correctly, you can either switch off the firewall or set it to function in passive mode. The second means that ModSecurity shall keep a log of any possible attack that may occur, but shall not take any action to prevent it. The logs produced in passive or active mode shall give you more details about the exact file which was attacked, the type of the attack and the IP address it originated from, etcetera. This information shall permit you to decide what measures you can take to boost the safety of your websites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules we use are updated often with a commercial pack from a third-party security company we work with, but from time to time our staff include their own rules as well if they find a new potential threat.