ModSecurity in Cloud Web Hosting
We offer ModSecurity with all cloud web hosting plans, so your web applications shall be protected against harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you will be able to stop it using the respective section of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you shall discover inside Hepsia are quite detailed and offer information about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so on. We use a range of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Servers
Any web app that you install within your new semi-dedicated server account shall be protected by ModSecurity because the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain which you include or create using your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area within Hepsia where not only could you activate or deactivate it entirely, but you can also enable a passive mode, so the firewall won't stop anything, but it will still maintain a record of potential attacks. This requires just a mouse click and you will be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, and so on. The firewall employs two sets of rules on our servers - a commercial one which we get from a third-party web security company and a custom one that our admins update manually in order to respond to recently discovered threats as fast as possible.
ModSecurity in VPS Servers
ModSecurity is included with all Hepsia-based VPS servers which we offer and it'll be turned on automatically for every new domain or subdomain you include on the web server. That way, any web app you install will be protected right from the start without doing anything manually on your end. The firewall could be handled through the section of the Control Panel that bears the same name. This is the area in whichyou'll be able to switch off ModSecurity or let its passive mode, so it won't take any action towards threats, but will still maintain a comprehensive log. The recorded information is available in the same section as well and you'll be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules we employ on our servers are a mixture between commercial ones which we obtain from a security firm and custom ones that are included by our administrators to maximize the protection of any web applications hosted on our end.
ModSecurity in Dedicated Servers
ModSecurity is provided with all dedicated servers which are integrated with our Hepsia CP and you will not have to do anything specific on your end to employ it since it is enabled by default whenever you include a new domain or subdomain on your server. In case it disrupts some of your programs, you will be able to stop it through the respective part of Hepsia, or you may leave it in passive mode, so it'll identify attacks and shall still maintain a log for them, but won't prevent them. You'll be able to examine the logs later to find out what you can do to boost the protection of your Internet sites since you'll find information such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity reacted, and so forth. The rules we employ are commercial, hence they're regularly updated by a security provider, but to be on the safe side, our administrators also add custom rules every now and then as to react to any new threats they have found.