ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Hosted Domains; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's used to prevent attacks against script-driven sites by employing security rules that contain specific expressions. That way, the firewall can block hacking and spamming attempts and preserve even websites which aren't updated regularly. As an example, multiple failed login attempts to a script administrator area or attempts to execute a certain file with the objective to get access to the script will trigger certain rules, so ModSecurity will stop these activities the second it discovers them. The firewall is quite efficient because it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It also maintains a very detailed log of all attack attempts which features more info than standard Apache logs, so you could later examine the data and take further measures to boost the security of your sites if needed.

ModSecurity in Shared Website Hosting

ModSecurity is supplied with all shared website hosting servers, so if you opt to host your sites with our business, they'll be shielded from an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you'll have to do on your end. You'll be able to stop ModSecurity for any site if required, or to enable a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You will be able to view specific logs from your Hepsia CP including the IP where the attack originated from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the security of our customers' websites seriously, we use a group of commercial rules which we take from one of the leading firms that maintain this type of rules. Our admins also include custom rules to make certain that your sites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting packages and if you choose to host your Internet sites with our company, there shall not be anything special you will have to do since the firewall is activated by default for all domains and subdomains you add using your hosting Control Panel. If needed, you could disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall shall still operate and record information, but shall not do anything to prevent potential attacks against your Internet sites. Comprehensive logs will be available in your Control Panel and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so on. We use two sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and customized ones that our admins sometimes add to respond to newly discovered risks on time.

ModSecurity in VPS

ModSecurity is provided with all Hepsia-based virtual private servers that we offer and it will be turned on automatically for every new domain or subdomain that you add on the web server. That way, any web application which you install shall be secured from the very beginning without doing anything by hand on your end. The firewall may be managed via the section of the Control Panel that has the same name. This is the location whereyou'll be able to switch off ModSecurity or activate its passive mode, so it shall not take any action towards threats, but will still keep a comprehensive log. The recorded data is available within the same section as well and you shall be able to see what IPs any attacks originated from so that you stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules which we use on our servers are a mix between commercial ones which we obtain from a security firm and custom ones that are added by our admins to enhance the security of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia CP and you'll not need to do anything specific on your end to employ it since it's turned on by default each time you add a new domain or subdomain on your hosting server. In case it disrupts some of your programs, you shall be able to stop it via the respective section of Hepsia, or you could leave it working in passive mode, so it'll detect attacks and shall still keep a log for them, but will not stop them. You may examine the logs later to learn what you can do to improve the protection of your websites since you'll find information such as where an intrusion attempt originated from, what Internet site was attacked and based on what rule ModSecurity reacted, etcetera. The rules we use are commercial, thus they are regularly updated by a security company, but to be on the safe side, our administrators also add custom rules occasionally in order to deal with any new threats they have found.