ModSecurity

: Glossary; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Purchase

ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to prevent attacks toward script-driven sites through the use of security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and protect even sites that aren't updated frequently. For example, several failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script will trigger particular rules, so ModSecurity will block these activities the instant it detects them. The firewall is very efficient since it monitors the entire HTTP traffic to a website in real time without slowing it down, so it can prevent an attack before any harm is done. It also maintains an exceptionally detailed log of all attack attempts which contains more info than traditional Apache logs, so you can later analyze the data and take further measures to boost the security of your Internet sites if required.

ModSecurity in Shared Website Hosting

ModSecurity comes by default with all shared website hosting packages which we supply and it will be switched on automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and disable it with only a click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to prevent them. The log for any of your Internet sites will feature comprehensive info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are constantly updated and comprise of both commercial ones that we get from a third-party security business and custom ones that our system admins add in the event that they detect a new type of attacks. In this way, the websites that you host here shall be way more protected with no action required on your end.

ModSecurity in Semi-dedicated Hosting

Any web app that you set up inside your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain which you add or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section inside Hepsia where not only can you activate or deactivate it completely, but you can also activate a passive mode, so the firewall will not block anything, but it'll still keep a record of possible attacks. This takes only a mouse click and you'll be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, and so forth. The firewall employs two sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one which our admins update personally in order to respond to newly discovered threats as quickly as possible.

ModSecurity in VPS Hosting

Security is extremely important to us, so we install ModSecurity on all virtual private servers that are provided with the Hepsia Control Panel by default. The firewall could be managed through a dedicated section inside Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you'll not need to do anything manually. You shall also be able to deactivate it or switch on the so-called detection mode, so it shall keep a log of possible attacks you can later study, but shall not stop them. The logs in both passive and active modes contain information about the type of the attack and how it was prevented, what IP it came from and other useful info which may help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Beyond the commercial rules we get for ModSecurity from a third-party security firm, we also employ our own rules since from time to time we identify specific attacks which aren't yet present in the commercial group. That way, we can easily improve the security of your Virtual private server immediately as opposed to waiting for a certified update.

ModSecurity in Dedicated Web Hosting

All of our dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any program you upload or install shall be properly secured from the very beginning and you won't have to bother about common attacks or vulnerabilities. A separate section within Hepsia will allow you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you'll see in the logs can easily help you to secure your Internet sites better - the IP address an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this data, you'll be able to see if a website needs an update, if you need to block IPs from accessing your hosting server, etcetera. Besides the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones too every time they find a new threat which is not yet in the commercial bundle.