ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is employed to prevent attacks against script-driven sites by employing security rules that contain particular expressions. That way, the firewall can block hacking and spamming attempts and preserve even websites which are not updated frequently. For instance, several failed login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script shall trigger particular rules, so ModSecurity shall block these activities the moment it identifies them. The firewall is extremely efficient because it monitors the whole HTTP traffic to a website in real time without slowing it down, so it can easily prevent an attack before any damage is done. It also keeps an incredibly thorough log of all attack attempts which features more information than standard Apache logs, so you could later analyze the data and take extra measures to increase the security of your Internet sites if necessary.

ModSecurity in Cloud Web Hosting

We offer ModSecurity with all cloud web hosting plans, so your Internet apps shall be shielded from destructive attacks. The firewall is activated by default for all domains and subdomains, but in case you would like, you'll be able to stop it via the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you shall find in Hepsia are incredibly detailed and feature information about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, etc. We employ a group of commercial rules which are often updated, but sometimes our administrators include custom rules as well so as to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions which we offer feature ModSecurity and since the firewall is switched on by default, any website that you set up under a domain or a subdomain shall be protected right from the start. An independent section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall enable you to start and stop the firewall for any Internet site or activate a detection mode. With the last option, ModSecurity shall not take any action, but it shall still identify possible attacks and will keep all data in a log as if it were completely active. The logs can be found within the same section of the CP and they feature information about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etc. The security rules which we employ on our servers are a mix of commercial ones from a security firm and custom ones made by our system administrators. Therefore, we provide higher security for your web programs as we can protect them from attacks even before security corporations release updates for brand new threats.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting Control Panel, so your web applications shall be secured from the moment your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you can disable it with a click from the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs can be found within the same section and include information about the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For optimum security, we use not only commercial rules from a business working in the field of web security, but also custom ones our administrators add manually so as to respond to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Hosting

ModSecurity is offered by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain you create on the hosting server. In case that a web application doesn't work properly, you could either turn off the firewall or set it to work in passive mode. The latter means that ModSecurity will maintain a log of any possible attack which could occur, but won't take any action to prevent it. The logs generated in passive or active mode will offer you additional details about the exact file which was attacked, the type of the attack and the IP address it originated from, etcetera. This info will allow you to decide what measures you can take to increase the security of your sites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules we employ are updated regularly with a commercial bundle from a third-party security firm we work with, but sometimes our admins include their own rules too in case they come across a new potential threat.