ModSecurity in Shared Web Hosting
We offer ModSecurity with all shared web hosting plans, so your web apps shall be protected against destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you shall be able to stop it using the respective area of your Hepsia CP. You can also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you will discover in Hepsia are quite detailed and include data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, and so on. We employ a group of commercial rules that are often updated, but sometimes our admins include custom rules as well so as to better protect the Internet sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
Any web program that you set up within your new semi-dedicated server account shall be protected by ModSecurity since the firewall is provided with all our hosting packages and is activated by default for any domain and subdomain that you add or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated area in Hepsia where not simply could you activate or deactivate it completely, but you could also activate a passive mode, so the firewall will not block anything, but it'll still keep a record of possible attacks. This takes only a click and you will be able to look at the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was handled, etc. The firewall uses 2 groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one which our admins update personally as to respond to recently discovered threats as quickly as possible.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are set up with the Hepsia hosting CP, so your web programs shall be protected from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you can disable it with a mouse click from the corresponding section of Hepsia. You can also set it to function in detection mode, so it'll keep a detailed log of any possible attacks without taking any action to prevent them. The logs can be found in the exact same section and offer info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not just commercial rules from a business operating in the field of web security, but also custom ones our admins include manually so as to respond to new risks which are still not dealt with in the commercial rules.
ModSecurity in Dedicated Servers
All of our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any application that you upload or install will be secured from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An individual section in Hepsia will allow you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall find in the logs shall allow you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, etc. With this data, you could see whether a website needs an update, whether you should block IPs from accessing your web server, etc. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too when they come across a new threat that's not yet in the commercial bundle.