ModSecurity in Hosting
We offer ModSecurity with all hosting packages, so your Internet apps will be resistant to harmful attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you shall be able to stop it via the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you will discover within Hepsia are extremely detailed and feature information about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, etc. We employ a range of commercial rules that are regularly updated, but sometimes our admins include custom rules as well so as to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server packages which we offer come with ModSecurity and since the firewall is switched on by default, any Internet site which you set up under a domain or a subdomain shall be protected straight away. A separate section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll permit you to stop and start the firewall for any Internet site or switch on a detection mode. With the last mentioned, ModSecurity will not take any action, but it will still identify possible attacks and will keep all info in a log as if it were fully active. The logs can be found inside the exact same section of the Control Panel and they offer information regarding the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, etc. The security rules that we employ on our machines are a mix of commercial ones from a security business and custom ones created by our system admins. As a result, we provide increased security for your web programs as we can protect them from attacks even before security firms release updates for brand new threats.
ModSecurity in VPS Servers
All VPS servers which are set up with the Hepsia Control Panel come with ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the machine, so there will not be anything special that you shall have to do to protect your sites. It shall take you simply a click to stop ModSecurity if needed or to turn on its passive mode so that it records what happens without taking any steps to prevent intrusions. You will be able to see the logs produced in active or passive mode through the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to tackle it, and so on. We use a mixture of commercial and custom rules in order to make sure that ModSecurity will block as many risks as possible, therefore boosting the security of your web programs as much as possible.
ModSecurity in Dedicated Servers
ModSecurity is provided by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain you create on the server. Just in case that a web application doesn't operate properly, you may either disable the firewall or set it to work in passive mode. The latter means that ModSecurity shall maintain a log of any potential attack that might occur, but shall not take any action to prevent it. The logs created in passive or active mode shall give you additional details about the exact file which was attacked, the nature of the attack and the IP it originated from, and so on. This information will permit you to determine what measures you can take to improve the safety of your Internet sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules that we use are updated frequently with a commercial package from a third-party security enterprise we work with, but sometimes our administrators include their own rules too when they identify a new potential threat.