ModSecurity in Shared Hosting
ModSecurity is available with each and every shared hosting solution that we offer and it's turned on by default for any domain or subdomain that you include through your Hepsia Control Panel. In case it interferes with any of your programs or you would like to disable it for any reason, you will be able to achieve that through the ModSecurity area of Hepsia with simply a mouse click. You may also activate a passive mode, so the firewall will discover possible attacks and keep a log, but will not take any action. You can see comprehensive logs in the same section, including the IP where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For optimum protection of our clients we use a group of commercial firewall rules blended with custom ones which are added by our system admins.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting solutions and if you decide to host your Internet sites with our company, there will not be anything special you'll have to do as the firewall is turned on by default for all domains and subdomains which you add through your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a certain site or activate the so-called detection mode in which case the firewall will still function and record info, but will not do anything to stop potential attacks on your Internet sites. Thorough logs will be available within your Control Panel and you'll be able to see what sort of attacks took place, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks originated from, etc. We employ 2 types of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom ones that our administrators sometimes include to respond to newly identified threats promptly.
ModSecurity in VPS
ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting Control Panel, so your web applications will be secured from the instant your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you could deactivate it with a click of your mouse via the corresponding section of Hepsia. You could also set it to work in detection mode, so it will maintain a detailed log of any potential attacks without taking any action to stop them. The logs are available within the same section and include info about the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For optimum security, we employ not only commercial rules from a company operating in the field of web security, but also custom ones our administrators add manually so as to respond to new risks which are still not addressed in the commercial rules.
ModSecurity in Dedicated Hosting
All of our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any program that you upload or set up shall be secured from the very beginning and you will not need to concern yourself with common attacks or vulnerabilities. An independent section inside Hepsia will permit you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records information about intrusions, but does not take actions to prevent them. What you will see in the logs shall allow you to to secure your sites better - the IP address an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, etcetera. With this info, you could see whether an Internet site needs an update, whether you need to block IPs from accessing your server, etc. In addition to the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too when they come across a new threat that is not yet included in the commercial bundle.