ModSecurity in Hosting
We offer ModSecurity with all hosting packages, so your Internet apps shall be protected against malicious attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective area of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you will find inside Hepsia are very detailed and feature information about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, and so on. We use a group of commercial rules that are often updated, but sometimes our admins include custom rules as well so as to efficiently protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
We've integrated ModSecurity as a standard inside all semi-dedicated hosting packages, so your web apps will be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to enable or disable the firewall for any Internet site with a click. You'll also be able to switch on a passive detection mode in which ModSecurity shall keep a log of possible attacks without actually preventing them. The comprehensive logs include things like the nature of the attack and what ModSecurity response that attack activated, where it came from, etcetera. The list of rules which we employ is frequently updated as to match any new threats which may appear on the Internet and it includes both commercial rules that we get from a security business and custom-written ones that our administrators add in the event that they discover a threat that is not present inside the commercial list yet.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting CP, so your web applications will be secured from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if necessary, you could disable it with a click from the corresponding section of Hepsia. You could also set it to operate in detection mode, so it shall keep a detailed log of any potential attacks without taking any action to stop them. The logs can be found within the exact same section and provide information regarding the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not simply commercial rules from a business operating in the field of web security, but also custom ones that our administrators include manually in order to react to new risks which are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers Hosting
ModSecurity is offered by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain you create on the server. Just in case that a web app does not work adequately, you may either turn off the firewall or set it to work in passive mode. The latter means that ModSecurity will maintain a log of any possible attack that may take place, but will not take any action to prevent it. The logs created in active or passive mode shall offer you more details about the exact file that was attacked, the type of the attack and the IP it came from, etcetera. This data will enable you to choose what actions you can take to increase the protection of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules we employ are updated frequently with a commercial package from a third-party security firm we work with, but occasionally our staff add their own rules as well in the event that they come across a new potential threat.