ModSecurity in Cloud Web Hosting
ModSecurity is supplied with all cloud web hosting servers, so when you choose to host your websites with our organization, they will be shielded from an array of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you shall need to do on your end. You'll be able to stop ModSecurity for any site if needed, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You'll be able to view comprehensive logs via your Hepsia Control Panel including the IP address where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. Since we take the security of our customers' websites seriously, we use a set of commercial rules that we take from one of the top companies that maintain this kind of rules. Our admins also add custom rules to make certain that your sites shall be resistant to as many risks as possible.
ModSecurity in Semi-dedicated Servers
We have incorporated ModSecurity by default inside all semi-dedicated server packages, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will permit you to activate or disable the firewall for any website with a mouse click. You shall also be able to turn on a passive detection mode in which ModSecurity will keep a log of potential attacks without actually preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack triggered, where it originated from, and so forth. The list of rules that we use is regularly updated as to match any new threats that could appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones which our administrators include if they discover a threat that is not present within the commercial list yet.
ModSecurity in VPS Servers
All VPS servers which are provided with the Hepsia Control Panel feature ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the machine, so there will not be anything special that you'll need to do to protect your sites. It will take you a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what goes on without taking any actions to stop intrusions. You shall be able to view the logs generated in passive or active mode via the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to deal with it, etc. We use a mix of commercial and custom rules in order to make sure that ModSecurity shall prevent as many risks as possible, thus boosting the protection of your web apps as much as possible.
ModSecurity in Dedicated Servers
All our dedicated servers which are installed with the Hepsia hosting CP come with ModSecurity, so any application you upload or install will be protected from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will permit you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you shall find in the logs shall help you to secure your sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this information, you'll be able to see if a site needs an update, if you should block IPs from accessing your hosting server, etc. Besides the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well when they discover a new threat which is not yet included in the commercial bundle.