ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Join us

ModSecurity is a highly effective firewall for Apache web servers that is used to prevent attacks toward web apps. It monitors the HTTP traffic to a particular website in real time and blocks any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to do this - for instance, attempting to log in to a script administration area unsuccessfully many times triggers one rule, sending a request to execute a certain file that may result in gaining access to the Internet site triggers another rule, and so on. ModSecurity is one of the best firewalls around and it'll secure even scripts that aren't updated often as it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive info about each and every intrusion attempt is recorded and the logs the firewall maintains are a lot more specific than the regular logs provided by the Apache server, so you could later examine them and determine whether you need to take more measures so as to improve the safety of your script-driven websites.

ModSecurity in Shared Website Hosting

ModSecurity comes by default with all shared website hosting solutions that we offer and it will be turned on automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with just a click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to stop them. The log for any of your sites shall contain detailed info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are frequently updated and consist of both commercial ones we get from a third-party security company and custom ones our system admins add in case that they detect a new sort of attacks. In this way, the Internet sites that you host here will be way more secure with no action expected on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server plans and if you decide to host your Internet sites with our company, there will not be anything special you'll have to do given that the firewall is switched on by default for all domains and subdomains that you add via your hosting CP. If needed, you can disable ModSecurity for a given Internet site or turn on the so-called detection mode in which case the firewall shall still function and record data, but shall not do anything to stop possible attacks on your websites. Detailed logs will be accessible in your CP and you shall be able to see what type of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, etcetera. We use 2 types of rules on our servers - commercial ones from a business that operates in the field of web security, and custom made ones which our admins sometimes include to respond to newly identified threats on time.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are set up with the Hepsia hosting Control Panel, so your web programs shall be secured from the second your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you can disable it with a click of your mouse via the corresponding section of Hepsia. You may also set it to operate in detection mode, so it will keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found inside the very same section and offer information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For optimum security, we use not only commercial rules from a firm operating in the field of web security, but also custom ones which our administrators add manually in order to react to new threats which are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

If you decide to host your websites on a dedicated server with the Hepsia Control Panel, your web applications shall be secured immediately because ModSecurity is supplied with all Hepsia-based packages. You'll be able to control the firewall easily and if required, you shall be able to turn it off or enable its passive mode when it'll only maintain a log of what's happening without taking any action to prevent potential attacks. The logs which you can find inside the very same section of the Control Panel are incredibly detailed and feature information about the attacker IP, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so forth. This info shall permit you to take measures and enhance the protection of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our staff add when they detect attacks that haven't yet been included within the commercial pack.