ModSecurity

: Definitions; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Purchase

ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and if it identifies an intrusion attempt, it blocks it. The firewall additionally maintains a more detailed log for the traffic than any web server does, so you will manage to keep an eye on what is going on with your sites better than if you rely only on standard logs. ModSecurity uses security rules based on which it prevents attacks. For example, it detects whether anyone is attempting to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a certain command. In such instances these attempts trigger the corresponding rules and the software blocks the attempts in real time, then records detailed details about them in its logs. ModSecurity is one of the best software firewalls available and it can protect your web apps against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Shared Hosting

ModSecurity can be found with each and every shared hosting solution which we offer and it's activated by default for every domain or subdomain that you add through your Hepsia CP. In case it disrupts any of your applications or you'd like to disable it for whatever reason, you'll be able to do that through the ModSecurity section of Hepsia with only a mouse click. You can also activate a passive mode, so the firewall will identify possible attacks and maintain a log, but won't take any action. You can see comprehensive logs in the very same section, including the IP address where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, etc. For optimum security of our clients we use a set of commercial firewall rules combined with custom ones which are included by our system administrators.

ModSecurity in Semi-dedicated Servers

Any web program you install inside your new semi-dedicated server account will be protected by ModSecurity because the firewall is included with all our hosting packages and is activated by default for any domain and subdomain you include or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated area inside Hepsia where not only could you activate or deactivate it completely, but you could also activate a passive mode, so the firewall will not stop anything, but it shall still maintain a record of potential attacks. This takes just a click and you shall be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, etc. The firewall uses 2 groups of rules on our machines - a commercial one which we get from a third-party web security firm and a custom one which our admins update personally as to respond to newly discovered threats immediately.

ModSecurity in VPS Servers

All VPS servers that are offered with the Hepsia Control Panel come with ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the server, so there shall not be anything special that you'll need to do to protect your sites. It will take you just a click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any measures to stop intrusions. You shall be able to view the logs generated in passive or active mode via the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall employed to tackle it, etc. We employ a combination of commercial and custom rules so as to make sure that ModSecurity will stop as many threats as possible, therefore improving the protection of your web apps as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are integrated with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it since it is activated by default whenever you include a new domain or subdomain on your hosting server. In the event that it interferes with any of your programs, you shall be able to stop it via the respective section of Hepsia, or you can leave it working in passive mode, so it'll recognize attacks and shall still keep a log for them, but won't prevent them. You can look at the logs later to find out what you can do to boost the safety of your Internet sites as you will find information such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity responded, and so on. The rules we use are commercial, therefore they are regularly updated by a security provider, but to be on the safe side, our staff also include custom rules occasionally in order to respond to any new threats they have found.