ModSecurity in Cloud Web Hosting
ModSecurity is available on all cloud web hosting web servers, so when you choose to host your sites with our organization, they'll be resistant to a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there will be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any site if required, or to enable a detection mode, so all activity shall be recorded, but the firewall won't take any real action. You'll be able to view comprehensive logs via your Hepsia CP including the IP address where the attack originated from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the protection of our customers' Internet sites seriously, we employ a selection of commercial rules that we take from one of the leading companies which maintain such rules. Our administrators also add custom rules to ensure that your websites will be protected against as many risks as possible.
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our semi-dedicated server solutions and if you opt to host your sites with us, there shall not be anything special you will have to do given that the firewall is switched on by default for all domains and subdomains you add through your hosting CP. If required, you could disable ModSecurity for a given site or switch on the so-called detection mode in which case the firewall shall still function and record data, but won't do anything to prevent possible attacks on your sites. Thorough logs will be accessible in your Control Panel and you shall be able to see what sort of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so on. We use 2 kinds of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones that our administrators often include to respond to newly found threats in a timely manner.
ModSecurity in VPS Servers
All VPS servers that are offered with the Hepsia CP include ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the web server, so there shall not be anything special which you will have to do to protect your websites. It will take you only a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what occurs without taking any measures to stop intrusions. You shall be able to view the logs generated in active or passive mode through the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall used to take care of it, etc. We employ a mixture of commercial and custom rules so as to make sure that ModSecurity will block as many risks as possible, thus enhancing the security of your web applications as much as possible.
ModSecurity in Dedicated Servers
ModSecurity is available as standard with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain you create on the server. In case that a web app does not work adequately, you can either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity will keep a log of any possible attack which might occur, but won't take any action to prevent it. The logs generated in active or passive mode shall provide you with more details about the exact file which was attacked, the form of the attack and the IP it came from, etc. This information shall permit you to decide what measures you can take to increase the security of your sites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules we employ are updated constantly with a commercial bundle from a third-party security provider we work with, but oftentimes our admins include their own rules too when they discover a new potential threat.