ModSecurity

: Definitions; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Join us

ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's employed to stop attacks toward script-driven sites by using security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and preserve even websites that aren't updated frequently. For instance, a number of failed login attempts to a script administrative area or attempts to execute a particular file with the intention to get access to the script will trigger specific rules, so ModSecurity will block out these activities the second it discovers them. The firewall is extremely efficient since it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It furthermore keeps an exceptionally comprehensive log of all attack attempts that contains more information than typical Apache logs, so you could later check out the data and take additional measures to enhance the security of your Internet sites if required.

ModSecurity in Web Hosting

ModSecurity is supplied with all web hosting machines, so when you choose to host your sites with our business, they'll be protected against a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you shall need to do on your end. You will be able to stop ModSecurity for any Internet site if required, or to activate a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs through your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the security of our customers' Internet sites very seriously, we employ a collection of commercial rules that we get from one of the leading companies that maintain this type of rules. Our admins also add custom rules to ensure that your websites will be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you opt to host your websites with us, there shall not be anything special you will have to do given that the firewall is turned on by default for all domains and subdomains which you include via your hosting Control Panel. If needed, you could disable ModSecurity for a given Internet site or enable the so-called detection mode in which case the firewall will still operate and record information, but shall not do anything to stop possible attacks on your Internet sites. In depth logs will be accessible within your CP and you shall be able to see what sort of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks originated from, and so on. We employ two kinds of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom made ones which our admins often add to respond to newly found threats promptly.

ModSecurity in VPS Servers

Safety is extremely important to us, so we install ModSecurity on all VPS servers that are set up with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section inside Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you won't need to do anything by hand. You shall also be able to disable it or activate the so-called detection mode, so it will maintain a log of possible attacks you can later examine, but shall not prevent them. The logs in both passive and active modes contain details regarding the kind of the attack and how it was prevented, what IP it originated from and other important data which could help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Besides the commercial rules which we get for ModSecurity from a third-party security company, we also use our own rules as every now and then we discover specific attacks which aren't yet present within the commercial pack. This way, we can easily improve the security of your VPS in a timely manner rather than awaiting a certified update.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers which are integrated with our Hepsia Control Panel and you will not have to do anything specific on your end to use it because it is turned on by default each time you include a new domain or subdomain on your server. In case it disrupts some of your apps, you will be able to stop it through the respective part of Hepsia, or you can leave it in passive mode, so it shall identify attacks and shall still keep a log for them, but won't stop them. You could analyze the logs later to find out what you can do to enhance the security of your Internet sites as you'll find details such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity responded, and so on. The rules that we use are commercial, thus they are frequently updated by a security firm, but to be on the safe side, our admins also add custom rules once in a while in order to respond to any new threats they have identified.