ModSecurity

: Hosting Definitions; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order Now

ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and if it identifies an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the website visitors than any server does, so you will manage to keep an eye on what is going on with your websites much better than if you rely simply on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it recognizes whether anyone is attempting to log in to the administration area of a certain script a number of times or if a request is sent to execute a file with a certain command. In such circumstances these attempts trigger the corresponding rules and the firewall program hinders the attempts immediately, after that records comprehensive info about them inside its logs. ModSecurity is among the best software firewalls out there and it can easily protect your web applications against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Website Hosting

ModSecurity is available with each website hosting solution which we provide and it's switched on by default for every domain or subdomain which you add through your Hepsia CP. In the event that it disrupts any of your programs or you'd like to disable it for any reason, you shall be able to do that through the ModSecurity area of Hepsia with just a click. You could also enable a passive mode, so the firewall will recognize possible attacks and keep a log, but will not take any action. You'll be able to view detailed logs in the same section, including the IP where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etcetera. For optimum protection of our customers we use a group of commercial firewall rules blended with custom ones that are provided by our system admins.

ModSecurity in Semi-dedicated Hosting

We've incorporated ModSecurity as a standard in all semi-dedicated hosting plans, so your web apps will be protected whenever you install them under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will allow you to activate or disable the firewall for any website with a click. You will also be able to activate a passive detection mode through which ModSecurity will keep a log of potential attacks without actually preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response that attack activated, where it came from, etc. The list of rules that we employ is constantly updated as to match any new risks that could appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones that our admins add in the event that they find a threat that is not present within the commercial list yet.

ModSecurity in VPS

Security is very important to us, so we set up ModSecurity on all virtual private servers that are set up with the Hepsia Control Panel by default. The firewall could be managed through a dedicated section within Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't have to do anything by hand. You will also be able to disable it or turn on the so-called detection mode, so it'll keep a log of potential attacks which you can later study, but will not block them. The logs in both passive and active modes offer information about the kind of the attack and how it was stopped, what IP it originated from and other valuable information which might help you to tighten the security of your websites by updating them or blocking IPs, as an example. On top of the commercial rules that we get for ModSecurity from a third-party security enterprise, we also use our own rules since from time to time we find specific attacks which are not yet present in the commercial pack. This way, we could improve the protection of your VPS promptly rather than waiting for an official update.

ModSecurity in Dedicated Hosting

ModSecurity is provided by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain you create on the server. In the event that a web app does not operate correctly, you may either turn off the firewall or set it to work in passive mode. The second means that ModSecurity will keep a log of any potential attack that might happen, but shall not take any action to prevent it. The logs created in active or passive mode will offer you additional details about the exact file that was attacked, the form of the attack and the IP it originated from, and so on. This data shall enable you to determine what measures you can take to improve the safety of your Internet sites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules we employ are updated often with a commercial bundle from a third-party security provider we work with, but occasionally our staff add their own rules too if they come across a new potential threat.