ModSecurity

: Terminology; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks against web apps. It monitors the HTTP traffic to a particular website in real time and blocks any intrusion attempts the instant it identifies them. The firewall uses a set of rules to accomplish that - as an illustration, trying to log in to a script admin area unsuccessfully a few times activates one rule, sending a request to execute a specific file which may result in accessing the website triggers a different rule, etc. ModSecurity is one of the best firewalls on the market and it will preserve even scripts which are not updated on a regular basis since it can prevent attackers from employing known exploits and security holes. Incredibly thorough data about each intrusion attempt is recorded and the logs the firewall keeps are considerably more specific than the conventional logs created by the Apache server, so you could later take a look at them and decide whether you need to take additional measures in order to improve the protection of your script-driven Internet sites.

ModSecurity in Website Hosting

ModSecurity is available on all website hosting servers, so when you decide to host your websites with our company, they shall be shielded from a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You'll be able to stop ModSecurity for any site if required, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You shall be able to view comprehensive logs from your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. As we take the protection of our clients' sites seriously, we use a set of commercial rules which we get from one of the top companies that maintain this sort of rules. Our administrators also include custom rules to make certain that your sites will be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you decide to host your websites with our company, there won't be anything special you will have to do as the firewall is switched on by default for all domains and subdomains which you add using your hosting CP. If necessary, you can disable ModSecurity for a certain site or turn on the so-called detection mode in which case the firewall will still operate and record information, but shall not do anything to prevent potential attacks against your sites. Detailed logs will be available in your CP and you'll be able to see what type of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, and so on. We use 2 types of rules on our servers - commercial ones from a company that operates in the field of web security, and custom ones which our admins occasionally include to respond to newly identified threats on time.

ModSecurity in VPS Servers

Protection is of the utmost importance to us, so we install ModSecurity on all VPS servers that are provided with the Hepsia CP by default. The firewall can be managed through a dedicated section in Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't need to do anything by hand. You will also be able to deactivate it or activate the so-called detection mode, so it will keep a log of possible attacks you can later examine, but will not prevent them. The logs in both passive and active modes offer info regarding the kind of the attack and how it was prevented, what IP address it came from and other valuable info that may help you to tighten the security of your sites by updating them or blocking IPs, for instance. In addition to the commercial rules which we get for ModSecurity from a third-party security company, we also implement our own rules because occasionally we detect specific attacks which aren't yet present within the commercial package. This way, we can easily enhance the protection of your Virtual private server immediately instead of waiting for a certified update.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers that are integrated with our Hepsia CP and you will not need to do anything specific on your end to employ it since it's switched on by default each time you include a new domain or subdomain on your web server. In case it disrupts some of your apps, you will be able to stop it via the respective part of Hepsia, or you may leave it in passive mode, so it'll identify attacks and shall still maintain a log for them, but won't stop them. You can examine the logs later to learn what you can do to boost the security of your Internet sites as you shall find info such as where an intrusion attempt came from, what website was attacked and based on what rule ModSecurity responded, and so on. The rules we employ are commercial, thus they are constantly updated by a security company, but to be on the safe side, our staff also include custom rules occasionally in order to react to any new threats they have identified.