ModSecurity

: Glossary; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and in case it discovers an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the site visitors than any web server does, so you'll manage to keep an eye on what's going on with your Internet sites better than if you rely simply on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects whether somebody is attempting to log in to the administration area of a certain script several times or if a request is sent to execute a file with a specific command. In such cases these attempts set off the corresponding rules and the firewall program hinders the attempts instantly, then records detailed info about them inside its logs. ModSecurity is amongst the best software firewalls out there and it could easily protect your web apps against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.

ModSecurity in Website Hosting

ModSecurity comes by default with all website hosting packages which we offer and it shall be switched on automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you could activate and deactivate it with only a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to stop them. The log for each of your websites will include detailed info including the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules which we use are frequently updated and incorporate both commercial ones which we get from a third-party security firm and custom ones our system administrators add in case that they detect a new sort of attacks. This way, the sites you host here shall be much more secure with no action needed on your end.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity by default inside all semi-dedicated hosting packages, so your web apps will be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts shall permit you to activate or turn off the firewall for any site with a mouse click. You shall also have the ability to activate a passive detection mode through which ModSecurity shall keep a log of potential attacks without actually stopping them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack triggered, where it came from, and so forth. The list of rules we use is constantly updated as to match any new threats which might appear on the Internet and it includes both commercial rules that we get from a security corporation and custom-written ones which our admins include if they find a threat that is not present inside the commercial list yet.

ModSecurity in VPS Web Hosting

Security is of the utmost importance to us, so we set up ModSecurity on all virtual private servers that are set up with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section within Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you'll not have to do anything manually. You will also be able to deactivate it or activate the so-called detection mode, so it will keep a log of potential attacks you can later analyze, but shall not stop them. The logs in both passive and active modes include info about the form of the attack and how it was eliminated, what IP address it originated from and other valuable data that may help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. Beyond the commercial rules which we get for ModSecurity from a third-party security enterprise, we also implement our own rules because once in a while we discover specific attacks which are not yet present in the commercial pack. This way, we can easily improve the security of your VPS in a timely manner instead of waiting for an official update.

ModSecurity in Dedicated Servers Hosting

ModSecurity is provided by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain that you create on the web server. In the event that a web application doesn't operate adequately, you may either disable the firewall or set it to work in passive mode. The second means that ModSecurity shall maintain a log of any possible attack which may occur, but won't take any action to stop it. The logs generated in active or passive mode will provide you with additional details about the exact file that was attacked, the type of the attack and the IP it originated from, etc. This info shall allow you to decide what measures you can take to enhance the protection of your Internet sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules that we employ are updated constantly with a commercial bundle from a third-party security firm we work with, but from time to time our administrators add their own rules too if they find a new potential threat.