ModSecurity

: Hosting Terminology; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order

ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and in case it identifies an intrusion attempt, it prevents it. The firewall also keeps a more comprehensive log for the site visitors than any web server does, so you shall manage to monitor what is going on with your sites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it recognizes if somebody is trying to log in to the admin area of a particular script several times or if a request is sent to execute a file with a certain command. In such situations these attempts trigger the corresponding rules and the firewall blocks the attempts immediately, and then records in-depth details about them within its logs. ModSecurity is one of the most effective software firewalls on the market and it can easily protect your web applications against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.

: ModSecurity in Website Hosting

ModSecurity is provided with all website hosting machines, so when you decide to host your websites with our organization, they'll be shielded from a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you will have to do on your end. You will be able to stop ModSecurity for any Internet site if needed, or to enable a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You will be able to view specific logs via your Hepsia Control Panel including the IP address where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the protection of our customers' websites very seriously, we employ a set of commercial rules which we get from one of the top firms that maintain this sort of rules. Our administrators also include custom rules to make certain that your websites shall be shielded from as many threats as possible.; ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity by default in all semi-dedicated hosting packages, so your web apps will be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will permit you to enable or disable the firewall for any website with a click. You'll also be able to switch on a passive detection mode in which ModSecurity will keep a log of possible attacks without really preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack caused, where it originated from, and so on. The list of rules we use is constantly updated in order to match any new risks that might appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones that our administrators add in the event that they find a threat which is not present within the commercial list yet.; ModSecurity in VPS Web Hosting

ModSecurity is included with all Hepsia-based virtual private servers we offer and it will be switched on automatically for every new domain or subdomain which you include on the hosting server. This way, any web app which you install will be protected from the very beginning without doing anything manually on your end. The firewall can be managed through the section of the CP that bears the same name. This is the place whereyou can disable ModSecurity or enable its passive mode, so it shall not take any action towards threats, but will still maintain a detailed log. The recorded info is available in the same area as well and you'll be able to see what IPs any attacks originated from to enable you to block them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules which we use on our servers are a mixture between commercial ones we obtain from a security firm and custom ones that are added by our admins to improve the security of any web apps hosted on our end.; ModSecurity in Dedicated Servers Hosting

If you choose to host your Internet sites on a dedicated server with the Hepsia CP, your web programs will be secured right from the start as ModSecurity is supplied with all Hepsia-based solutions. You shall be able to control the firewall without difficulty and if needed, you will be able to turn it off or switch on its passive mode when it will only maintain a log of what's occurring without taking any action to stop possible attacks. The logs that you'll find within the same section of the Control Panel are extremely detailed and contain info about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so forth. This info will enable you to take measures and boost the protection of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our staff add when they detect attacks which haven't yet been included inside the commercial pack.