ModSecurity

: Hosting Terminology; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Buy Now

ModSecurity is a highly effective firewall for Apache web servers that's used to stop attacks against web applications. It monitors the HTTP traffic to a given site in real time and prevents any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to accomplish that - for example, trying to log in to a script administration area unsuccessfully several times activates one rule, sending a request to execute a certain file that could result in getting access to the website triggers another rule, and so forth. ModSecurity is amongst the best firewalls on the market and it'll secure even scripts which aren't updated regularly as it can prevent attackers from employing known exploits and security holes. Quite comprehensive information about each and every intrusion attempt is recorded and the logs the firewall maintains are a lot more detailed than the regular logs provided by the Apache server, so you can later examine them and decide if you need to take more measures in order to boost the security of your script-driven Internet sites.

ModSecurity in Shared Website Hosting

ModSecurity is offered with each shared website hosting plan which we provide and it's turned on by default for every domain or subdomain that you add through your Hepsia CP. If it disrupts any of your apps or you'd like to disable it for any reason, you shall be able to do that through the ModSecurity section of Hepsia with merely a mouse click. You can also activate a passive mode, so the firewall will detect potential attacks and keep a log, but will not take any action. You'll be able to see extensive logs in the exact same section, including the IP address where the attack came from, exactly what the attacker aimed to do and at what time, what ModSecurity did, and so forth. For maximum protection of our clients we use a set of commercial firewall rules combined with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans that we offer come with ModSecurity and because the firewall is enabled by default, any Internet site which you create under a domain or a subdomain shall be secured right from the start. A separate section in the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it shall permit you to start and stop the firewall for any Internet site or activate a detection mode. With the latter, ModSecurity will not take any action, but it will still recognize possible attacks and shall keep all information within a log as if it were completely active. The logs can be found within the same section of the Control Panel and they offer info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules which we use on our web servers are a mix between commercial ones from a security company and custom ones made by our system admins. For that reason, we offer higher security for your web applications as we can defend them from attacks even before security firms release updates for new threats.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers we offer and it shall be switched on automatically for any new domain or subdomain you add on the hosting server. In this way, any web app you install will be secured right away without doing anything manually on your end. The firewall may be managed via the section of the CP that bears the same name. This is the location whereyou can disable ModSecurity or enable its passive mode, so it will not take any action against threats, but will still maintain a comprehensive log. The recorded information is available inside the same area as well and you'll be able to see what IPs any attacks came from so that you can block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules which we employ on our servers are a combination between commercial ones we obtain from a security company and custom ones that are added by our staff to improve the security of any web applications hosted on our end.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any application that you upload or set up shall be secured from the very beginning and you will not need to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will enable you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you'll discover in the logs can allow you to to secure your sites better - the IP an attack came from, what site was attacked and in what way, what ModSecurity rule was triggered, and so on. With this info, you could see if a website needs an update, if you should block IPs from accessing your hosting server, etc. In addition to the third-party commercial security rules for ModSecurity which we use, our admins include custom ones too every time they find a new threat that's not yet included in the commercial bundle.