ModSecurity

: Definitions; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Join us

ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its overall performance and if it detects an intrusion attempt, it prevents it. The firewall additionally keeps a more comprehensive log for the traffic than any server does, so you'll be able to keep track of what's happening with your sites better than if you rely merely on standard logs. ModSecurity uses security rules based on which it prevents attacks. For instance, it recognizes if anyone is trying to log in to the administrator area of a given script a number of times or if a request is sent to execute a file with a certain command. In these situations these attempts trigger the corresponding rules and the firewall blocks the attempts immediately, then records in-depth details about them within its logs. ModSecurity is amongst the very best software firewalls available and it could easily protect your web apps against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Cloud Website Hosting

ModSecurity is provided with all cloud website hosting web servers, so if you choose to host your websites with our company, they will be protected against a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you'll need to do on your end. You will be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You'll be able to view comprehensive logs using your Hepsia CP including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity handled the threat. As we take the security of our customers' Internet sites very seriously, we use a collection of commercial rules which we take from one of the top firms that maintain this kind of rules. Our administrators also add custom rules to make certain that your websites will be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Hosting

Any web program that you install within your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall is provided with all our hosting plans and is activated by default for any domain and subdomain that you include or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated area inside Hepsia where not simply can you activate or deactivate it completely, but you could also switch on a passive mode, so the firewall won't block anything, but it will still keep a record of potential attacks. This normally requires simply a mouse click and you will be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was taken care of, etcetera. The firewall uses two sets of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one which our admins update manually in order to respond to recently discovered threats as fast as possible.

ModSecurity in VPS Web Hosting

All virtual private servers which are offered with the Hepsia Control Panel feature ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the web server, so there will not be anything special which you will have to do to protect your Internet sites. It'll take you just a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what goes on without taking any measures to stop intrusions. You will be able to look at the logs created in passive or active mode via the corresponding section of Hepsia and learn more about the type of the attack, where it came from, what rule the firewall used to tackle it, etcetera. We employ a mixture of commercial and custom rules in order to make sure that ModSecurity will block out as many threats as possible, thus boosting the security of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any application you upload or install shall be protected from the very beginning and you won't have to stress about common attacks or vulnerabilities. A separate section inside Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to stop them. What you will see in the logs can allow you to to secure your Internet sites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this information, you can see whether a website needs an update, if you ought to block IPs from accessing your web server, and so forth. Aside from the third-party commercial security rules for ModSecurity we use, our admins include custom ones too every time they find a new threat that is not yet a part of the commercial bundle.