ModSecurity

: Terminology; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Purchase

ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is employed to prevent attacks against script-driven websites through the use of security rules which contain certain expressions. That way, the firewall can prevent hacking and spamming attempts and protect even sites which aren't updated regularly. For example, a number of unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the intention to get access to the script shall trigger specific rules, so ModSecurity shall block out these activities the second it discovers them. The firewall is incredibly efficient because it monitors the entire HTTP traffic to a website in real time without slowing it down, so it could stop an attack before any harm is done. It furthermore maintains an incredibly thorough log of all attack attempts that contains more info than standard Apache logs, so you could later examine the data and take extra measures to enhance the security of your Internet sites if needed.

ModSecurity in Cloud Hosting

ModSecurity comes standard with all cloud hosting plans that we provide and it'll be activated automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you can activate and deactivate it with a click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to prevent them. The log for each of your sites shall include elaborate information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are constantly updated and comprise of both commercial ones we get from a third-party security company and custom ones that our system admins add in the event that they detect a new type of attacks. That way, the websites you host here shall be way more protected without any action needed on your end.

ModSecurity in Semi-dedicated Hosting

Any web program which you install within your new semi-dedicated hosting account will be protected by ModSecurity because the firewall is provided with all our hosting packages and is activated by default for any domain and subdomain that you add or create using your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated section in Hepsia where not simply could you activate or deactivate it fully, but you can also switch on a passive mode, so the firewall won't stop anything, but it will still keep an archive of potential attacks. This requires only a mouse click and you will be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was dealt with, etc. The firewall uses 2 groups of rules on our servers - a commercial one which we get from a third-party web security firm and a custom one that our admins update manually as to respond to recently discovered threats at the earliest opportunity.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting CP, so your web programs shall be secured from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you'll be able to deactivate it with a click of your mouse via the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall keep a comprehensive log of any potential attacks without taking any action to stop them. The logs can be found in the very same section and include info about the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For maximum security, we employ not only commercial rules from a company operating in the field of web security, but also custom ones that our admins add manually in order to respond to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity is available as standard with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain which you create on the server. In the event that a web application doesn't operate adequately, you may either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity will maintain a log of any potential attack that could take place, but will not take any action to stop it. The logs generated in passive or active mode will give you more details about the exact file that was attacked, the form of the attack and the IP it came from, and so on. This info will enable you to decide what actions you can take to boost the security of your websites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules that we use are updated regularly with a commercial package from a third-party security provider we work with, but from time to time our admins add their own rules too in case they identify a new potential threat.