ModSecurity in Shared Hosting
We offer ModSecurity with all shared hosting solutions, so your Internet apps shall be shielded from destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you'd like, you shall be able to stop it through the respective area of your Hepsia CP. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you'll discover inside Hepsia are extremely detailed and feature information about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, etcetera. We use a group of commercial rules that are regularly updated, but sometimes our admins include custom rules as well so as to better protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting solutions which we offer feature ModSecurity and since the firewall is switched on by default, any website you build under a domain or a subdomain will be protected immediately. An individual section inside the Hepsia CP which comes with the semi-dedicated accounts is devoted to ModSecurity and it shall enable you to start and stop the firewall for any Internet site or enable a detection mode. With the last option, ModSecurity shall not take any action, but it shall still identify possible attacks and will keep all info in a log as if it were completely active. The logs can be found inside the same section of the Control Panel and they offer specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules we use on our servers are a mix between commercial ones from a security business and custom ones developed by our system admins. For that reason, we provide increased security for your web programs as we can protect them from attacks even before security corporations release updates for completely new threats.
ModSecurity in VPS
ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting CP, so your web apps shall be secured from the moment your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if required, you could deactivate it with a mouse click via the corresponding section of Hepsia. You can also set it to operate in detection mode, so it shall maintain an extensive log of any possible attacks without taking any action to stop them. The logs are available within the very same section and include info about the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For optimum security, we employ not just commercial rules from a firm working in the field of web security, but also custom ones our administrators add personally so as to react to new threats that are still not tackled in the commercial rules.
ModSecurity in Dedicated Hosting
ModSecurity is offered by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain that you create on the web server. In case that a web app does not operate adequately, you can either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity will keep a log of any potential attack which may take place, but shall not take any action to stop it. The logs generated in passive or active mode shall offer you additional details about the exact file which was attacked, the nature of the attack and the IP address it came from, etc. This information will permit you to decide what actions you can take to increase the security of your websites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we employ are updated frequently with a commercial bundle from a third-party security company we work with, but oftentimes our admins add their own rules too in case they come across a new potential threat.