ModSecurity in Hosting
We provide ModSecurity with all hosting solutions, so your web apps shall be protected against malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you'd like, you will be able to stop it via the respective part of your Hepsia CP. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you shall find within Hepsia are incredibly detailed and offer info about the nature of any attack, when it occurred and from what IP address, the firewall rule that was triggered, and so on. We use a range of commercial rules that are regularly updated, but sometimes our admins add custom rules as well so as to efficiently protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Servers
We've included ModSecurity by default inside all semi-dedicated server plans, so your web applications shall be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts shall allow you to activate or turn off the firewall for any site with a click. You shall also have the ability to activate a passive detection mode through which ModSecurity will maintain a log of potential attacks without actually stopping them. The comprehensive logs include the nature of the attack and what ModSecurity response that attack activated, where it came from, etc. The list of rules which we employ is constantly updated in order to match any new threats which might appear on the Internet and it comes with both commercial rules that we get from a security corporation and custom-written ones which our admins include in the event that they find a threat that's not present in the commercial list yet.
ModSecurity in VPS Servers
Security is vital to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section in Hepsia and is activated automatically when you include a new domain or create a subdomain, so you'll not have to do anything personally. You shall also be able to deactivate it or turn on the so-called detection mode, so it shall maintain a log of potential attacks which you can later analyze, but won't prevent them. The logs in both passive and active modes offer information regarding the kind of the attack and how it was stopped, what IP address it originated from and other important info that might help you to tighten the security of your websites by updating them or blocking IPs, as an example. Beyond the commercial rules which we get for ModSecurity from a third-party security company, we also implement our own rules since every now and then we discover specific attacks which aren't yet present within the commercial pack. That way, we can boost the security of your VPS right away instead of waiting for an official update.
ModSecurity in Dedicated Servers
All our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any application that you upload or set up will be secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. An individual section within Hepsia will enable you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records details about intrusions, but does not take actions to stop them. What you will see in the logs shall allow you to to secure your Internet sites better - the IP an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, etc. With this info, you can see whether a website needs an update, whether you ought to block IPs from accessing your hosting server, and so on. Aside from the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too when they find a new threat that is not yet a part of the commercial bundle.