ModSecurity

: Definitions; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Join us

ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its overall performance and when it identifies an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the site visitors than any server does, so you will be able to keep track of what's going on with your Internet sites a lot better than if you rely only on standard logs. ModSecurity works with security rules based on which it prevents attacks. For example, it detects if somebody is attempting to log in to the administrator area of a particular script several times or if a request is sent to execute a file with a certain command. In such instances these attempts trigger the corresponding rules and the software blocks the attempts in real time, then records comprehensive details about them within its logs. ModSecurity is among the most effective software firewalls available and it could easily protect your web applications against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

: ModSecurity in Cloud Hosting

We provide ModSecurity with all cloud hosting plans, so your Internet apps will be resistant to destructive attacks. The firewall is activated by default for all domains and subdomains, but if you'd like, you will be able to stop it using the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you will discover inside Hepsia are very detailed and include data about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, etc. We use a set of commercial rules that are regularly updated, but sometimes our admins add custom rules as well so as to better protect the Internet sites hosted on our machines.; ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you choose to host your websites with us, there won't be anything special you will have to do given that the firewall is turned on by default for all domains and subdomains which you add using your hosting Control Panel. If needed, you could disable ModSecurity for a given Internet site or activate the so-called detection mode in which case the firewall will still operate and record data, but won't do anything to stop potential attacks against your sites. Comprehensive logs will be readily available in your Control Panel and you will be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks originated from, and so forth. We use 2 sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and custom ones which our admins sometimes add to respond to newly identified risks on time.; ModSecurity in VPS Servers

ModSecurity is provided with all Hepsia-based VPS servers that we offer and it shall be activated automatically for every new domain or subdomain which you include on the hosting server. That way, any web application which you install shall be protected right away without doing anything by hand on your end. The firewall may be handled from the section of the Control Panel that bears the same name. This is the place whereyou can switch off ModSecurity or enable its passive mode, so it will not take any action against threats, but shall still maintain a thorough log. The recorded info is available within the same area as well and you'll be able to see what IPs any attacks originated from to enable you to block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules we use on our servers are a blend between commercial ones that we get from a security organization and custom ones which are included by our admins to optimize the protection of any web applications hosted on our end.; ModSecurity in Dedicated Servers

ModSecurity is provided by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain which you create on the server. In case that a web application does not function adequately, you can either turn off the firewall or set it to operate in passive mode. The latter means that ModSecurity will maintain a log of any possible attack that might occur, but won't take any action to prevent it. The logs generated in passive or active mode shall give you additional details about the exact file that was attacked, the form of the attack and the IP address it originated from, etc. This data shall enable you to choose what measures you can take to boost the safety of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules which we use are updated constantly with a commercial bundle from a third-party security firm we work with, but sometimes our staff add their own rules also in the event that they discover a new potential threat.