ModSecurity

: Glossary; Disk Space; Hepsia Control Panel; Hosted Domains; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and when it discovers an intrusion attempt, it prevents it. The firewall also maintains a more thorough log for the site visitors than any web server does, so you will manage to monitor what's happening with your Internet sites better than if you rely simply on standard logs. ModSecurity works with security rules based on which it prevents attacks. For example, it detects if somebody is attempting to log in to the administration area of a specific script multiple times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the firewall software hinders the attempts right away, then records detailed details about them within its logs. ModSecurity is amongst the very best software firewalls available and it can protect your web applications against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting plans which we supply and it will be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and disable it with just a click or set it to detection mode, so it shall maintain a log of all attacks, but it shall not do anything to prevent them. The log for any of your sites shall contain detailed information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules we use are regularly updated and consist of both commercial ones that we get from a third-party security company and custom ones which our system admins include in the event that they detect a new sort of attacks. That way, the sites you host here will be a lot more secure with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity by default in all semi-dedicated hosting packages, so your web apps shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will permit you to enable or disable the firewall for any site with a click. You shall also be able to switch on a passive detection mode in which ModSecurity will keep a log of possible attacks without really preventing them. The thorough logs include the nature of the attack and what ModSecurity response that attack generated, where it originated from, etcetera. The list of rules that we employ is regularly updated as to match any new risks which may appear on the Internet and it comes with both commercial rules that we get from a security corporation and custom-written ones that our admins add in the event that they discover a threat that's not present within the commercial list yet.

ModSecurity in VPS

ModSecurity comes with all Hepsia-based virtual private servers which we offer and it'll be activated automatically for every new domain or subdomain which you include on the server. In this way, any web app you install shall be secured right away without doing anything by hand on your end. The firewall could be managed from the section of the CP that bears the same name. This is the area in whichyou could disable ModSecurity or enable its passive mode, so it will not take any action toward threats, but will still keep a detailed log. The recorded data is available in the same area as well and you'll be able to see what IPs any attacks came from so that you stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules which we use on our servers are a blend between commercial ones which we obtain from a security company and custom ones which are included by our administrators to maximize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

All our dedicated servers which are set up with the Hepsia hosting Control Panel include ModSecurity, so any application that you upload or set up will be secured from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An independent section within Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you shall discover in the logs shall help you to secure your Internet sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this info, you'll be able to see whether a site needs an update, if you should block IPs from accessing your web server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our administrators add custom ones too when they come across a new threat which is not yet in the commercial bundle.