ModSecurity in Cloud Hosting
ModSecurity is available on all cloud hosting machines, so when you choose to host your Internet sites with our organization, they'll be shielded from a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you will need to do on your end. You'll be able to stop ModSecurity for any site if needed, or to activate a detection mode, so all activity will be recorded, but the firewall will not take any real action. You will be able to view detailed logs from your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the safety of our clients' sites seriously, we employ a group of commercial rules which we take from one of the top companies which maintain this sort of rules. Our admins also include custom rules to make sure that your sites will be shielded from as many risks as possible.
ModSecurity in Semi-dedicated Servers
Any web app that you set up inside your new semi-dedicated server account shall be protected by ModSecurity as the firewall comes with all our hosting solutions and is switched on by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not only could you activate or deactivate it completely, but you can also activate a passive mode, so the firewall won't block anything, but it shall still maintain an archive of potential attacks. This takes simply a click and you shall be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, etcetera. The firewall employs 2 sets of rules on our machines - a commercial one that we get from a third-party web security company and a custom one that our admins update manually in order to respond to newly discovered risks as soon as possible.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are provided with the Hepsia hosting CP, so your web applications will be secured from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you'll be able to deactivate it with a click from the corresponding section of Hepsia. You could also set it to function in detection mode, so it will maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs are available in the same section and include details about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For maximum security, we employ not just commercial rules from a firm operating in the field of web security, but also custom ones that our administrators add manually so as to respond to new risks which are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers
ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you won't need to do anything specific on your end to use it as it's activated by default every time you add a new domain or subdomain on your web server. If it interferes with any of your apps, you'll be able to stop it through the respective part of Hepsia, or you could leave it in passive mode, so it shall recognize attacks and shall still maintain a log for them, but shall not block them. You may look at the logs later to find out what you can do to increase the safety of your sites as you'll find information such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, and so forth. The rules we use are commercial, thus they're frequently updated by a security firm, but to be on the safe side, our administrators also include custom rules once in a while as to respond to any new threats they have identified.