ModSecurity in Web Hosting
ModSecurity comes by default with all web hosting plans that we offer and it shall be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and disable it with a click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites shall feature detailed info including the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules which we use are frequently updated and include both commercial ones which we get from a third-party security business and custom ones that our system admins add in case that they detect a new type of attacks. That way, the Internet sites which you host here will be way more protected without any action expected on your end.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server packages that we offer feature ModSecurity and because the firewall is turned on by default, any website which you create under a domain or a subdomain shall be protected right away. A separate section within the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to stop and start the firewall for any Internet site or enable a detection mode. With the latter, ModSecurity won't take any action, but it shall still detect possible attacks and shall keep all data in a log as if it were 100% active. The logs can be found within the same section of the Control Panel and they feature details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules that we employ on our machines are a mix of commercial ones from a security company and custom ones made by our system admins. As a result, we offer greater security for your web programs as we can shield them from attacks even before security companies release updates for brand new threats.
ModSecurity in VPS Servers
All VPS servers that are set up with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the server, so there won't be anything special that you'll have to do to protect your websites. It will take you only a click to stop ModSecurity if necessary or to activate its passive mode so that it records what occurs without taking any measures to prevent intrusions. You will be able to view the logs produced in passive or active mode via the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to handle it, and so forth. We employ a combination of commercial and custom rules so as to make certain that ModSecurity will stop as many risks as possible, consequently improving the protection of your web applications as much as possible.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers which are set up with our Hepsia CP and you will not have to do anything specific on your end to employ it as it is switched on by default whenever you add a new domain or subdomain on your web server. In case it disrupts any of your apps, you shall be able to stop it through the respective part of Hepsia, or you could leave it in passive mode, so it will recognize attacks and will still keep a log for them, but shall not block them. You'll be able to examine the logs later to determine what you can do to boost the protection of your sites since you will find details such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, and so on. The rules which we employ are commercial, thus they're regularly updated by a security provider, but to be on the safe side, our administrators also include custom rules once in a while in order to deal with any new threats they have discovered.