ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is a highly effective firewall for Apache web servers that is employed to prevent attacks towards web applications. It monitors the HTTP traffic to a certain site in real time and blocks any intrusion attempts the moment it detects them. The firewall uses a set of rules to do this - for example, trying to log in to a script administrator area unsuccessfully many times triggers one rule, sending a request to execute a certain file that may result in gaining access to the Internet site triggers a different rule, etcetera. ModSecurity is amongst the best firewalls out there and it'll secure even scripts which are not updated regularly as it can prevent attackers from employing known exploits and security holes. Very detailed info about every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the conventional logs created by the Apache server, so you could later take a look at them and determine whether you need to take additional measures in order to enhance the security of your script-driven websites.

ModSecurity in Shared Website Hosting

We offer ModSecurity with all shared website hosting solutions, so your web applications will be resistant to harmful attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you'll be able to stop it via the respective part of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall discover inside Hepsia are extremely detailed and offer info about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, and so on. We employ a range of commercial rules which are constantly updated, but sometimes our admins include custom rules as well in order to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

Any web program that you install in your new semi-dedicated server account will be protected by ModSecurity since the firewall is included with all our hosting plans and is turned on by default for any domain and subdomain which you add or create using your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated area within Hepsia where not only can you activate or deactivate it entirely, but you can also activate a passive mode, so the firewall will not stop anything, but it shall still keep an archive of possible attacks. This requires only a mouse click and you'll be able to see the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, and so on. The firewall employs 2 groups of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our administrators update manually as to respond to recently discovered risks as soon as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting Control Panel, so your web applications shall be protected from the moment your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if required, you could disable it with a click of your mouse from the corresponding section of Hepsia. You could also set it to operate in detection mode, so it shall keep a detailed log of any possible attacks without taking any action to prevent them. The logs are available in the same section and offer info about the nature of the attack, what IP address it originated from and what ModSecurity rule was triggered to stop it. For optimum security, we employ not only commercial rules from a company operating in the field of web security, but also custom ones which our admins add manually so as to react to new risks which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any program which you upload or set up shall be properly secured from the very beginning and you will not need to bother about common attacks or vulnerabilities. A separate section within Hepsia will enable you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you shall discover in the logs shall allow you to to secure your websites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this info, you can see whether a site needs an update, whether you ought to block IPs from accessing your hosting server, etcetera. On top of the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well if they find a new threat that is not yet included in the commercial bundle.