ModSecurity

: Definitions; Disk Space; Hepsia Control Panel; Hosted Domains; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Purchase

ModSecurity is an effective firewall for Apache web servers that is employed to prevent attacks against web applications. It tracks the HTTP traffic to a particular site in real time and blocks any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to do that - for example, attempting to log in to a script administrator area without success several times sets off one rule, sending a request to execute a specific file which could result in getting access to the Internet site triggers a different rule, etcetera. ModSecurity is among the best firewalls around and it'll protect even scripts which are not updated frequently since it can prevent attackers from employing known exploits and security holes. Very detailed information about every intrusion attempt is recorded and the logs the firewall keeps are considerably more detailed than the conventional logs created by the Apache server, so you may later analyze them and decide whether you need to take more measures in order to boost the safety of your script-driven Internet sites.

ModSecurity in Cloud Hosting

ModSecurity is available with each cloud hosting plan that we provide and it is activated by default for every domain or subdomain that you include via your Hepsia Control Panel. In case it interferes with any of your applications or you would like to disable it for any reason, you will be able to do that through the ModSecurity section of Hepsia with just a mouse click. You can also enable a passive mode, so the firewall will recognize potential attacks and maintain a log, but will not take any action. You can view extensive logs in the same section, including the IP where the attack originated from, exactly what the attacker aimed to do and at what time, what ModSecurity did, etcetera. For maximum security of our customers we use a set of commercial firewall rules blended with custom ones which are included by our system admins.

ModSecurity in Semi-dedicated Hosting

We've included ModSecurity by default in all semi-dedicated hosting packages, so your web apps shall be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts shall permit you to switch on or disable the firewall for any Internet site with a click. You'll also have the ability to activate a passive detection mode through which ModSecurity will maintain a log of possible attacks without actually preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack initiated, where it came from, etcetera. The list of rules we use is frequently updated in order to match any new risks that may appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our admins include if they find a threat that's not present in the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are provided with the Hepsia hosting Control Panel, so your web apps shall be secured from the moment your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you can deactivate it with a mouse click through the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found within the exact same section and provide information about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For optimum security, we use not simply commercial rules from a company working in the field of web security, but also custom ones which our admins include manually so as to respond to new risks which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers Hosting

ModSecurity is provided by default with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain that you create on the hosting server. Just in case that a web app doesn't function adequately, you could either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity will keep a log of any potential attack that could happen, but won't take any action to stop it. The logs generated in passive or active mode shall offer you more details about the exact file which was attacked, the type of the attack and the IP it came from, and so on. This data shall permit you to decide what actions you can take to boost the protection of your websites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules which we employ are updated regularly with a commercial pack from a third-party security firm we work with, but sometimes our staff add their own rules also in the event that they find a new potential threat.