ModSecurity in Website Hosting
We provide ModSecurity with all website hosting plans, so your web applications shall be shielded from destructive attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it through the respective part of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you will discover inside Hepsia are quite detailed and offer data about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so on. We employ a range of commercial rules which are frequently updated, but sometimes our admins include custom rules as well in order to better protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
We've included ModSecurity by default inside all semi-dedicated hosting packages, so your web applications shall be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will allow you to activate or disable the firewall for any site with a mouse click. You'll also be able to switch on a passive detection mode through which ModSecurity shall keep a log of possible attacks without actually preventing them. The detailed logs contain the nature of the attack and what ModSecurity response this attack caused, where it came from, and so on. The list of rules that we employ is regularly updated as to match any new risks that might appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones that our admins include in the event that they discover a threat that's not present inside the commercial list yet.
ModSecurity in VPS Hosting
Protection is essential to us, so we set up ModSecurity on all virtual private servers that are provided with the Hepsia Control Panel as a standard. The firewall can be managed through a dedicated section in Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't have to do anything manually. You will also be able to disable it or switch on the so-called detection mode, so it will keep a log of possible attacks that you can later study, but will not prevent them. The logs in both passive and active modes include information about the kind of the attack and how it was stopped, what IP address it originated from and other important data which may help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Besides the commercial rules that we get for ModSecurity from a third-party security company, we also employ our own rules because every now and then we detect specific attacks that aren't yet present within the commercial pack. That way, we can easily boost the protection of your Virtual private server instantly rather than awaiting a certified update.
ModSecurity in Dedicated Web Hosting
All our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any app that you upload or install shall be protected from the very beginning and you won't have to bother about common attacks or vulnerabilities. A separate section in Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you shall find in the logs shall allow you to to secure your sites better - the IP address an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, etc. With this info, you can see if a website needs an update, if you need to block IPs from accessing your hosting server, and so on. On top of the third-party commercial security rules for ModSecurity we use, our admins add custom ones too whenever they come across a new threat which is not yet a part of the commercial bundle.