ModSecurity

: Hosting Definitions; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Purchase

ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It's used to stop attacks toward script-driven sites by using security rules that contain specific expressions. That way, the firewall can block hacking and spamming attempts and protect even sites that are not updated on a regular basis. For example, a number of unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the intention to get access to the script shall trigger certain rules, so ModSecurity will block these activities the second it identifies them. The firewall is incredibly efficient because it screens the whole HTTP traffic to a site in real time without slowing it down, so it can easily prevent an attack before any damage is done. It furthermore keeps an incredibly thorough log of all attack attempts which features more information than standard Apache logs, so you can later check out the data and take additional measures to enhance the security of your websites if required.

ModSecurity in Cloud Website Hosting

ModSecurity comes standard with all cloud website hosting solutions that we provide and it shall be activated automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has three different modes, so you could switch on and deactivate it with just a click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to stop them. The log for any of your websites will include in-depth info including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules we use are regularly updated and include both commercial ones which we get from a third-party security business and custom ones which our system administrators add in the event that they detect a new sort of attacks. That way, the websites you host here shall be way more secure without any action expected on your end.

ModSecurity in Dedicated Servers

If you decide to host your sites on a dedicated server with the Hepsia CP, your web applications shall be protected immediately since ModSecurity is supplied with all Hepsia-based plans. You'll be able to control the firewall without difficulty and if needed, you will be able to turn it off or switch on its passive mode when it shall only maintain a log of what's taking place without taking any action to stop potential attacks. The logs that you will find inside the very same section of the CP are quite detailed and contain information about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so on. This data shall allow you to take measures and improve the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our administrators add whenever they identify attacks which haven't yet been included within the commercial pack.