ModSecurity

: Hosting Terminology; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and if it identifies an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the traffic than any server does, so you'll be able to keep an eye on what's going on with your sites a lot better than if you rely simply on conventional logs. ModSecurity works with security rules based on which it prevents attacks. For example, it detects whether someone is trying to log in to the administration area of a specific script multiple times or if a request is sent to execute a file with a specific command. In such instances these attempts trigger the corresponding rules and the firewall software hinders the attempts immediately, then records comprehensive details about them inside its logs. ModSecurity is amongst the best software firewalls on the market and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting solutions, so your web apps will be protected against harmful attacks. The firewall is switched on as standard for all domains and subdomains, but in case you'd like, you will be able to stop it using the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you will discover inside Hepsia are extremely detailed and offer information about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, and so forth. We employ a range of commercial rules which are frequently updated, but sometimes our admins include custom rules as well so as to better protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity as a standard within all semi-dedicated hosting products, so your web apps shall be protected the instant you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will allow you to enable or disable the firewall for any Internet site with a mouse click. You will also have the ability to turn on a passive detection mode in which ModSecurity shall keep a log of possible attacks without actually stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack generated, where it originated from, and so forth. The list of rules which we use is frequently updated as to match any new threats that might appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones which our admins add in the event that they discover a threat that's not present within the commercial list yet.

ModSecurity in VPS

Protection is extremely important to us, so we install ModSecurity on all virtual private servers that are set up with the Hepsia Control Panel by default. The firewall could be managed via a dedicated section in Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you will not have to do anything manually. You shall also be able to deactivate it or turn on the so-called detection mode, so it will maintain a log of potential attacks that you can later analyze, but shall not stop them. The logs in both passive and active modes include info about the form of the attack and how it was prevented, what IP address it originated from and other important data which could help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. Beyond the commercial rules that we get for ModSecurity from a third-party security company, we also implement our own rules because occasionally we discover specific attacks that are not yet present inside the commercial group. This way, we could enhance the security of your VPS in a timely manner as opposed to waiting for a certified update.

ModSecurity in Dedicated Hosting

ModSecurity is offered by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain you create on the web server. In the event that a web application does not function correctly, you could either turn off the firewall or set it to function in passive mode. The latter means that ModSecurity will maintain a log of any possible attack that may happen, but will not take any action to prevent it. The logs created in active or passive mode shall present you with more details about the exact file which was attacked, the nature of the attack and the IP address it originated from, etcetera. This information shall allow you to choose what actions you can take to boost the safety of your Internet sites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules which we employ are updated frequently with a commercial package from a third-party security enterprise we work with, but sometimes our staff include their own rules as well if they discover a new potential threat.