ModSecurity

: Definitions; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Get Started

ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and when it discovers an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the site visitors than any server does, so you shall be able to keep track of what's happening with your websites better than if you rely only on conventional logs. ModSecurity uses security rules based on which it stops attacks. For instance, it recognizes whether anyone is attempting to log in to the administrator area of a certain script a number of times or if a request is sent to execute a file with a particular command. In these situations these attempts set off the corresponding rules and the firewall software blocks the attempts immediately, then records in-depth information about them inside its logs. ModSecurity is one of the most effective software firewalls available and it could easily protect your web apps against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Shared Hosting

ModSecurity is provided with all shared hosting web servers, so if you choose to host your websites with our firm, they will be resistant to a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any Internet site if needed, or to switch on a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You'll be able to view detailed logs using your Hepsia Control Panel including the IP address where the attack came from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the safety of our customers' sites seriously, we use a collection of commercial rules which we take from one of the top companies which maintain such rules. Our admins also include custom rules to make sure that your sites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you opt to host your Internet sites with us, there won't be anything special you'll have to do given that the firewall is activated by default for all domains and subdomains you include via your hosting CP. If necessary, you could disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall shall still function and record data, but will not do anything to stop possible attacks against your websites. Detailed logs shall be accessible inside your CP and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so on. We use 2 sorts of rules on our servers - commercial ones from a company which operates in the field of web security, and customized ones which our admins occasionally include to respond to newly identified risks promptly.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting Control Panel, so your web programs will be secured from the second your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if required, you can deactivate it with a click through the corresponding section of Hepsia. You could also set it to function in detection mode, so it will maintain a detailed log of any potential attacks without taking any action to prevent them. The logs are available in the very same section and include information regarding the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For maximum security, we employ not just commercial rules from a firm working in the field of web security, but also custom ones that our administrators add personally so as to react to new threats which are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers which are set up with our Hepsia CP and you'll not need to do anything specific on your end to use it because it's activated by default each time you add a new domain or subdomain on your web server. If it interferes with some of your apps, you'll be able to stop it through the respective section of Hepsia, or you may leave it working in passive mode, so it will detect attacks and shall still keep a log for them, but won't block them. You can examine the logs later to learn what you can do to enhance the security of your sites as you will find info such as where an intrusion attempt originated from, what website was attacked and in accordance with what rule ModSecurity reacted, etcetera. The rules we employ are commercial, thus they are frequently updated by a security firm, but to be on the safe side, our administrators also include custom rules from time to time as to react to any new threats they have identified.