ModSecurity in Shared Hosting
We offer ModSecurity with all shared hosting plans, so your web apps shall be shielded from harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you will be able to stop it through the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you'll find within Hepsia are incredibly detailed and feature info about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, and so on. We use a group of commercial rules that are regularly updated, but sometimes our administrators include custom rules as well in order to efficiently protect the Internet sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our semi-dedicated server plans and if you opt to host your Internet sites with us, there shall not be anything special you'll need to do since the firewall is switched on by default for all domains and subdomains which you include through your hosting CP. If required, you'll be able to disable ModSecurity for a particular website or turn on the so-called detection mode in which case the firewall will still function and record info, but won't do anything to stop potential attacks against your Internet sites. Detailed logs shall be available in your CP and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks came from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones that our administrators occasionally include to respond to newly identified risks in a timely manner.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting Control Panel, so your web apps shall be protected from the second your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if required, you could disable it with a click of your mouse through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it'll maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs are available in the same section and provide details about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For maximum security, we use not just commercial rules from a business operating in the field of web security, but also custom ones that our administrators include personally so as to react to new threats which are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers
When you opt to host your sites on a dedicated server with the Hepsia CP, your web apps shall be protected straight away since ModSecurity is provided with all Hepsia-based solutions. You'll be able to regulate the firewall without difficulty and if necessary, you'll be able to turn it off or switch on its passive mode when it will only maintain a log of what is taking place without taking any action to stop possible attacks. The logs that you can find inside the exact same section of the CP are incredibly detailed and include info about the attacker IP address, what website and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etc. This information shall allow you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our administrators include whenever they recognize attacks which haven't yet been included in the commercial pack.