ModSecurity in Shared Hosting
ModSecurity comes by default with all shared hosting plans which we provide and it will be switched on automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with simply a click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to prevent them. The log for each of your websites shall feature elaborate information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are frequently updated and incorporate both commercial ones which we get from a third-party security company and custom ones that our system administrators add in the event that they detect a new kind of attacks. In this way, the websites you host here will be far more secure without any action needed on your end.
ModSecurity in Semi-dedicated Servers
We have incorporated ModSecurity by default in all semi-dedicated server packages, so your web apps will be protected whenever you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts shall permit you to switch on or turn off the firewall for any Internet site with a mouse click. You will also have the ability to turn on a passive detection mode with which ModSecurity shall maintain a log of potential attacks without actually preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response that attack generated, where it came from, etc. The list of rules that we use is frequently updated in order to match any new threats that may appear on the Internet and it includes both commercial rules that we get from a security corporation and custom-written ones which our admins add in case they find a threat that is not present inside the commercial list yet.
ModSecurity in VPS Servers
Protection is of the utmost importance to us, so we install ModSecurity on all VPS servers that are set up with the Hepsia CP as a standard. The firewall could be managed via a dedicated section in Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you won't have to do anything by hand. You will also be able to disable it or activate the so-called detection mode, so it will maintain a log of potential attacks which you can later examine, but won't prevent them. The logs in both passive and active modes contain details regarding the kind of the attack and how it was stopped, what IP it originated from and other useful data that may help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Besides the commercial rules we get for ModSecurity from a third-party security enterprise, we also implement our own rules as from time to time we detect specific attacks which aren't yet present in the commercial package. That way, we can easily improve the protection of your Virtual private server promptly as opposed to waiting for an official update.