ModSecurity in Shared Web Hosting
We provide ModSecurity with all shared web hosting solutions, so your web apps will be resistant to destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective section of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you'll find in Hepsia are extremely detailed and feature info about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, etc. We employ a range of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well in order to better protect the Internet sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
Any web application which you install inside your new semi-dedicated server account shall be protected by ModSecurity because the firewall is provided with all our hosting solutions and is switched on by default for any domain and subdomain which you add or create via your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated area within Hepsia where not simply can you activate or deactivate it completely, but you can also enable a passive mode, so the firewall won't stop anything, but it shall still maintain an archive of potential attacks. This normally requires just a click and you'll be able to look at the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall employs two groups of rules on our web servers - a commercial one that we get from a third-party web security company and a custom one that our administrators update manually as to respond to newly discovered risks as fast as possible.
ModSecurity in Dedicated Servers
All of our dedicated servers which are set up with the Hepsia hosting CP come with ModSecurity, so any app that you upload or install will be protected from the very beginning and you'll not need to concern yourself with common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you shall find in the logs can enable you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, and so on. With this info, you'll be able to see whether an Internet site needs an update, whether you ought to block IPs from accessing your hosting server, and so forth. Besides the third-party commercial security rules for ModSecurity we use, our admins include custom ones too whenever they discover a new threat that is not yet in the commercial bundle.