ModSecurity

: Definitions; Disk Space; Hepsia Control Panel; Hosted Domains; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and in case it detects an intrusion attempt, it blocks it. The firewall also keeps a more comprehensive log for the traffic than any server does, so you'll be able to keep an eye on what's happening with your websites better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it prevents attacks. For example, it detects whether someone is trying to log in to the admin area of a specific script multiple times or if a request is sent to execute a file with a certain command. In such cases these attempts set off the corresponding rules and the software blocks the attempts in real time, then records comprehensive information about them within its logs. ModSecurity is one of the very best software firewalls on the market and it could easily protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins often.

ModSecurity in Website Hosting

ModSecurity comes standard with all website hosting plans that we supply and it'll be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you can activate and deactivate it with a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to stop them. The log for any of your Internet sites shall include in-depth info including the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are frequently updated and incorporate both commercial ones which we get from a third-party security firm and custom ones our system admins include in the event that they detect a new type of attacks. That way, the Internet sites which you host here will be way more protected with no action needed on your end.

ModSecurity in Semi-dedicated Servers

We have integrated ModSecurity as a standard within all semi-dedicated server plans, so your web apps shall be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will allow you to switch on or turn off the firewall for any website with a click. You'll also have the ability to activate a passive detection mode in which ModSecurity will maintain a log of potential attacks without actually stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack triggered, where it originated from, and so on. The list of rules that we employ is constantly updated in order to match any new threats which might appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones which our admins include if they find a threat that is not present in the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers we offer and it shall be activated automatically for any new domain or subdomain that you include on the hosting server. That way, any web app that you install will be protected right away without doing anything by hand on your end. The firewall can be handled from the section of the CP which bears the same name. This is the area whereyou'll be able to disable ModSecurity or activate its passive mode, so it shall not take any action towards threats, but shall still maintain a detailed log. The recorded info is available inside the same section as well and you'll be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules which we use on our servers are a mix between commercial ones which we obtain from a security firm and custom ones which are included by our admins to enhance the security of any web applications hosted on our end.

ModSecurity in Dedicated Servers

All our dedicated servers that are set up with the Hepsia hosting CP feature ModSecurity, so any application you upload or install shall be properly secured from the very beginning and you will not have to bother about common attacks or vulnerabilities. An independent section in Hepsia will permit you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you shall find in the logs can easily help you to secure your sites better - the IP address an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this info, you could see if a website needs an update, if you ought to block IPs from accessing your server, etcetera. Aside from the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones as well whenever they come across a new threat that's not yet included in the commercial bundle.