ModSecurity in Shared Hosting
We provide ModSecurity with all shared hosting packages, so your Internet apps will be shielded from malicious attacks. The firewall is switched on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective area of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you will discover inside Hepsia are quite detailed and offer data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, etcetera. We employ a range of commercial rules that are constantly updated, but sometimes our admins add custom rules as well in order to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting plans that we offer come with ModSecurity and given that the firewall is switched on by default, any website which you build under a domain or a subdomain shall be secured right from the start. An individual section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it will permit you to stop and start the firewall for any website or enable a detection mode. With the last mentioned, ModSecurity shall not take any action, but it shall still recognize possible attacks and will keep all information inside a log as if it were completely active. The logs can be found in the exact same section of the CP and they offer info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules we employ on our machines are a mix of commercial ones from a security firm and custom ones created by our system admins. Consequently, we offer higher security for your web applications as we can defend them from attacks even before security firms release updates for brand new threats.
ModSecurity in VPS Hosting
All virtual private servers that are set up with the Hepsia Control Panel include ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the machine, so there will not be anything special that you'll have to do to protect your sites. It shall take you only a mouse click to stop ModSecurity if needed or to turn on its passive mode so that it records what goes on without taking any actions to stop intrusions. You shall be able to view the logs created in active or passive mode via the corresponding section of Hepsia and discover more about the form of the attack, where it came from, what rule the firewall used to handle it, etcetera. We use a mix of commercial and custom rules so as to make sure that ModSecurity will block out as many threats as possible, hence improving the protection of your web apps as much as possible.
ModSecurity in Dedicated Web Hosting
ModSecurity is provided as standard with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain which you create on the server. In case that a web application doesn't operate adequately, you may either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity shall keep a log of any potential attack that may happen, but will not take any action to prevent it. The logs created in passive or active mode shall provide you with more details about the exact file which was attacked, the type of the attack and the IP address it came from, and so forth. This data shall permit you to choose what actions you can take to boost the safety of your websites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we use are updated often with a commercial bundle from a third-party security company we work with, but sometimes our staff add their own rules too when they find a new potential threat.