ModSecurity

: Hosting Definitions; Disk Space; Hepsia Control Panel; Hosted Domains; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is employed to stop attacks towards script-driven sites by using security rules which contain certain expressions. In this way, the firewall can block hacking and spamming attempts and shield even sites that are not updated on a regular basis. As an example, numerous failed login attempts to a script admin area or attempts to execute a particular file with the intention to get access to the script shall trigger certain rules, so ModSecurity will block these activities the moment it identifies them. The firewall is very efficient since it tracks the entire HTTP traffic to a website in real time without slowing it down, so it can easily stop an attack before any harm is done. It additionally maintains an incredibly comprehensive log of all attack attempts that includes more information than traditional Apache logs, so you could later analyze the data and take additional measures to boost the security of your websites if needed.

ModSecurity in Shared Website Hosting

ModSecurity comes standard with all shared website hosting plans that we offer and it will be turned on automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and disable it with a click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to stop them. The log for any of your websites will contain in-depth information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are frequently updated and incorporate both commercial ones that we get from a third-party security business and custom ones that our system admins add in the event that they detect a new sort of attacks. In this way, the sites you host here will be much more protected with no action required on your end.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting solutions and if you opt to host your websites with us, there shall not be anything special you will have to do given that the firewall is activated by default for all domains and subdomains that you include through your hosting CP. If necessary, you could disable ModSecurity for a particular site or switch on the so-called detection mode in which case the firewall shall still function and record information, but won't do anything to stop potential attacks against your websites. In depth logs will be accessible inside your CP and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, etc. We use 2 types of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom ones that our admins sometimes include to respond to newly found risks in a timely manner.

ModSecurity in VPS Hosting

Safety is essential to us, so we set up ModSecurity on all virtual private servers that are made available with the Hepsia Control Panel by default. The firewall can be managed via a dedicated section in Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you won't have to do anything manually. You will also be able to deactivate it or activate the so-called detection mode, so it'll keep a log of potential attacks which you can later examine, but won't prevent them. The logs in both passive and active modes offer information about the form of the attack and how it was prevented, what IP it originated from and other important info which could help you to tighten the security of your websites by updating them or blocking IPs, for instance. On top of the commercial rules that we get for ModSecurity from a third-party security company, we also use our own rules because every now and then we discover specific attacks that are not yet present in the commercial pack. This way, we can easily improve the protection of your Virtual private server right away rather than awaiting an official update.

ModSecurity in Dedicated Web Hosting

All of our dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any application which you upload or install will be properly secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. A separate section within Hepsia will enable you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records information about intrusions, but doesn't take actions to stop them. What you'll see in the logs can easily allow you to to secure your Internet sites better - the IP an attack came from, what site was attacked and in what way, what ModSecurity rule was triggered, etc. With this information, you'll be able to see if a site needs an update, whether you should block IPs from accessing your hosting server, and so on. In addition to the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones as well every time they find a new threat which is not yet in the commercial bundle.