ModSecurity in Shared Hosting
We provide ModSecurity with all shared hosting packages, so your Internet apps shall be shielded from malicious attacks. The firewall is activated by default for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you'll find in Hepsia are extremely detailed and offer data about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, etcetera. We employ a range of commercial rules that are frequently updated, but sometimes our admins include custom rules as well in order to better protect the sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server packages which we offer come with ModSecurity and given that the firewall is turned on by default, any website which you set up under a domain or a subdomain shall be secured right from the start. An independent section within the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to start and stop the firewall for any website or switch on a detection mode. With the last option, ModSecurity won't take any action, but it'll still identify possible attacks and shall keep all data in a log as if it were 100% active. The logs could be found within the exact same section of the Control Panel and they offer details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules which we employ on our servers are a mix of commercial ones from a security business and custom ones created by our system admins. As a result, we offer greater security for your web apps as we can defend them from attacks even before security corporations release updates for brand new threats.
ModSecurity in VPS Servers
Safety is vital to us, so we install ModSecurity on all VPS servers which are provided with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section inside Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you won't have to do anything by hand. You'll also be able to deactivate it or activate the so-called detection mode, so it shall keep a log of possible attacks which you can later analyze, but won't stop them. The logs in both passive and active modes include details about the type of the attack and how it was stopped, what IP address it originated from and other important data which might help you to tighten the security of your websites by updating them or blocking IPs, for instance. In addition to the commercial rules which we get for ModSecurity from a third-party security company, we also employ our own rules since every now and then we discover specific attacks which are not yet present in the commercial group. This way, we could enhance the protection of your Virtual private server right away rather than waiting for an official update.
ModSecurity in Dedicated Servers
If you choose to host your Internet sites on a dedicated server with the Hepsia CP, your web apps will be protected immediately as ModSecurity is supplied with all Hepsia-based plans. You'll be able to control the firewall effortlessly and if necessary, you shall be able to turn it off or enable its passive mode when it will only maintain a log of what's occurring without taking any action to prevent possible attacks. The logs that you will find in the exact same section of the CP are extremely detailed and include information about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so forth. This information will allow you to take measures and improve the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our admins add when they detect attacks which have not yet been included within the commercial pack.