ModSecurity in Hosting
ModSecurity comes by default with all hosting solutions which we provide and it will be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you could switch on and deactivate it with only a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to prevent them. The log for any of your websites shall include in-depth information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are regularly updated and comprise of both commercial ones which we get from a third-party security business and custom ones that our system admins add in the event that they detect a new kind of attacks. This way, the Internet sites which you host here shall be way more protected with no action needed on your end.
ModSecurity in Semi-dedicated Servers
We've integrated ModSecurity as a standard within all semi-dedicated server plans, so your web applications will be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to activate or disable the firewall for any website with a click. You shall also have the ability to switch on a passive detection mode through which ModSecurity will maintain a log of potential attacks without really preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack triggered, where it came from, and so on. The list of rules which we use is regularly updated in order to match any new threats which could appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones that our administrators add if they discover a threat that's not present inside the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting Control Panel, so your web programs shall be secured from the moment your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you'll be able to deactivate it with a mouse click through the corresponding section of Hepsia. You can also set it to function in detection mode, so it shall maintain an extensive log of any potential attacks without taking any action to stop them. The logs can be found within the very same section and include info about the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For best security, we use not just commercial rules from a company operating in the field of web security, but also custom ones our administrators include manually in order to react to new risks which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
ModSecurity is included with all dedicated servers which are integrated with our Hepsia CP and you won't have to do anything specific on your end to employ it as it's activated by default whenever you include a new domain or subdomain on your server. If it disrupts some of your programs, you'll be able to stop it through the respective section of Hepsia, or you may leave it in passive mode, so it shall detect attacks and shall still maintain a log for them, but will not prevent them. You'll be able to look at the logs later to determine what you can do to increase the protection of your websites since you will find details such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, etc. The rules we employ are commercial, thus they're constantly updated by a security company, but to be on the safe side, our administrators also add custom rules every now and then as to respond to any new threats they have found.