ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting plans that we supply and it'll be switched on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to activate and deactivate it with a click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites shall include elaborate info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are constantly updated and incorporate both commercial ones that we get from a third-party security firm and custom ones our system administrators include in case that they detect a new type of attacks. This way, the sites you host here shall be way more protected without any action required on your end.
ModSecurity in Semi-dedicated Hosting
We have integrated ModSecurity by default in all semi-dedicated hosting packages, so your web applications shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will allow you to activate or turn off the firewall for any website with a click. You shall also be able to activate a passive detection mode through which ModSecurity shall maintain a log of possible attacks without actually preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack triggered, where it came from, etcetera. The list of rules that we employ is constantly updated in order to match any new threats that may appear on the Internet and it includes both commercial rules that we get from a security business and custom-written ones that our administrators include if they find a threat that's not present inside the commercial list yet.
ModSecurity in VPS
Safety is essential to us, so we install ModSecurity on all virtual private servers which are provided with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section within Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you'll not have to do anything manually. You will also be able to disable it or switch on the so-called detection mode, so it shall keep a log of potential attacks you can later analyze, but shall not block them. The logs in both passive and active modes offer details regarding the form of the attack and how it was prevented, what IP address it originated from and other valuable data that could help you to tighten the security of your websites by updating them or blocking IPs, as an example. On top of the commercial rules that we get for ModSecurity from a third-party security company, we also employ our own rules since once in a while we discover specific attacks that aren't yet present within the commercial pack. This way, we could increase the security of your VPS instantly instead of awaiting an official update.
ModSecurity in Dedicated Hosting
All our dedicated servers which are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program which you upload or install will be protected from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An individual section within Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you will find in the logs can easily allow you to to secure your sites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this data, you'll be able to see if an Internet site needs an update, whether you ought to block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity we use, our admins include custom ones too when they discover a new threat that is not yet a part of the commercial bundle.