ModSecurity in Website Hosting
We provide ModSecurity with all website hosting packages, so your web apps will be protected against malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you shall be able to stop it through the respective area of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you'll find within Hepsia are very detailed and offer info about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, etcetera. We use a set of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well in order to better protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting packages which we offer feature ModSecurity and because the firewall is turned on by default, any Internet site you create under a domain or a subdomain shall be protected right away. An independent section in the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it will allow you to stop and start the firewall for any website or enable a detection mode. With the last option, ModSecurity shall not take any action, but it will still detect possible attacks and shall keep all info inside a log as if it were completely active. The logs could be found inside the exact same section of the Control Panel and they offer details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules that we employ on our web servers are a mix of commercial ones from a security firm and custom ones created by our system admins. Consequently, we provide increased security for your web applications as we can protect them from attacks even before security firms release updates for new threats.
ModSecurity in VPS
ModSecurity is pre-installed on all virtual private servers that are set up with the Hepsia hosting CP, so your web applications shall be protected from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if required, you can deactivate it with a click of your mouse through the corresponding section of Hepsia. You can also set it to function in detection mode, so it will maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found in the same section and include information about the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For optimum security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones that our admins add manually in order to respond to new threats that are still not tackled in the commercial rules.
ModSecurity in Dedicated Hosting
ModSecurity is included with all dedicated servers which are set up with our Hepsia Control Panel and you won't need to do anything specific on your end to use it since it is activated by default every time you add a new domain or subdomain on your hosting server. In case it interferes with some of your programs, you shall be able to stop it via the respective part of Hepsia, or you can leave it operating in passive mode, so it'll identify attacks and shall still maintain a log for them, but won't block them. You could look at the logs later to find out what you can do to increase the protection of your websites as you'll find details such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity reacted, and so forth. The rules we use are commercial, hence they are constantly updated by a security company, but to be on the safe side, our admins also include custom rules from time to time as to react to any new threats they have discovered.