ModSecurity

: Terminology; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order Now

ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to stop attacks towards script-driven Internet sites by employing security rules which contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even sites which are not updated frequently. As an example, multiple failed login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script will trigger certain rules, so ModSecurity shall block these activities the minute it detects them. The firewall is quite efficient because it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any damage is done. It additionally keeps an incredibly comprehensive log of all attack attempts that features more info than traditional Apache logs, so you could later analyze the data and take extra measures to improve the security of your sites if required.

ModSecurity in Shared Web Hosting

ModSecurity is available on all shared web hosting servers, so if you opt to host your sites with our company, they shall be protected against a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You'll be able to view comprehensive logs via your Hepsia CP including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the protection of our clients' websites very seriously, we employ a set of commercial rules that we take from one of the leading companies which maintain this kind of rules. Our admins also add custom rules to make sure that your sites will be protected against as many risks as possible.

ModSecurity in Semi-dedicated Servers

Any web app that you install inside your new semi-dedicated server account shall be protected by ModSecurity since the firewall is provided with all our hosting solutions and is switched on by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated area within Hepsia where not only can you activate or deactivate it fully, but you could also switch on a passive mode, so the firewall won't block anything, but it will still maintain a record of potential attacks. This takes just a mouse click and you will be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall employs two sets of rules on our servers - a commercial one that we get from a third-party web security provider and a custom one which our admins update manually in order to respond to recently discovered risks immediately.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers which we offer and it shall be activated automatically for any new domain or subdomain which you add on the server. In this way, any web app that you install will be secured from the very beginning without doing anything personally on your end. The firewall may be handled from the section of the Control Panel which bears the same name. This is the location in whichyou could turn off ModSecurity or enable its passive mode, so it shall not take any action towards threats, but will still maintain a detailed log. The recorded data is available within the same area as well and you'll be able to see what IPs any attacks originated from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules which we use on our servers are a combination between commercial ones that we obtain from a security firm and custom ones that are included by our admins to enhance the protection of any web apps hosted on our end.

ModSecurity in Dedicated Servers

All our dedicated servers which are set up with the Hepsia hosting CP come with ModSecurity, so any application which you upload or install will be secured from the very beginning and you will not have to concern yourself with common attacks or vulnerabilities. A separate section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information about intrusions, but doesn't take actions to prevent them. What you will see in the logs can allow you to to secure your websites better - the IP an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, and so on. With this data, you'll be able to see whether a website needs an update, if you need to block IPs from accessing your web server, etc. Besides the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well when they come across a new threat which is not yet a part of the commercial bundle.