ModSecurity

: Hosting Definitions; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to stop attacks toward script-driven websites through the use of security rules that contain specific expressions. In this way, the firewall can prevent hacking and spamming attempts and shield even Internet sites which are not updated on a regular basis. As an example, several failed login attempts to a script administrator area or attempts to execute a specific file with the objective to get access to the script shall trigger specific rules, so ModSecurity shall stop these activities the instant it identifies them. The firewall is very efficient as it screens the whole HTTP traffic to a site in real time without slowing it down, so it can prevent an attack before any harm is done. It furthermore keeps an exceptionally comprehensive log of all attack attempts which contains more information than conventional Apache logs, so you could later analyze the data and take additional measures to increase the security of your websites if needed.

ModSecurity in Hosting

ModSecurity is offered with every hosting solution which we provide and it is turned on by default for any domain or subdomain that you include through your Hepsia CP. In the event that it disrupts any of your programs or you would like to disable it for whatever reason, you'll be able to accomplish that through the ModSecurity area of Hepsia with just a mouse click. You may also use a passive mode, so the firewall will identify possible attacks and keep a log, but won't take any action. You can view comprehensive logs in the same section, including the IP where the attack originated from, what exactly the attacker attempted to do and at what time, what ModSecurity did, and so on. For max security of our customers we use a collection of commercial firewall rules mixed with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages that we offer feature ModSecurity and given that the firewall is turned on by default, any site which you create under a domain or a subdomain will be protected right from the start. A separate section in the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall enable you to stop and start the firewall for any Internet site or switch on a detection mode. With the last option, ModSecurity won't take any action, but it shall still identify possible attacks and shall keep all info inside a log as if it were completely active. The logs could be found in the same section of the CP and they include information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so on. The security rules which we employ on our web servers are a mix of commercial ones from a security business and custom ones made by our system administrators. As a result, we provide increased security for your web apps as we can shield them from attacks before security companies release updates for new threats.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting Control Panel, so your web apps will be protected from the moment your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you'll be able to disable it with a mouse click via the corresponding section of Hepsia. You can also set it to work in detection mode, so it shall keep a detailed log of any possible attacks without taking any action to prevent them. The logs are available inside the very same section and offer info about the nature of the attack, what IP address it originated from and what ModSecurity rule was initiated to stop it. For maximum security, we employ not simply commercial rules from a business working in the field of web security, but also custom ones which our administrators add personally so as to respond to new risks that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

All our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any program that you upload or set up shall be properly secured from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An independent section within Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you will find in the logs shall help you to secure your websites better - the IP an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, etc. With this info, you'll be able to see whether a site needs an update, if you should block IPs from accessing your hosting server, etc. In addition to the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too whenever they come across a new threat which is not yet in the commercial bundle.