ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting plans that we provide and it'll be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you can switch on and deactivate it with a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your sites shall contain detailed info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are constantly updated and comprise of both commercial ones that we get from a third-party security business and custom ones our system administrators add in case that they detect a new kind of attacks. This way, the sites which you host here shall be much more secure with no action needed on your end.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting solutions and if you decide to host your sites with our company, there shall not be anything special you'll need to do as the firewall is switched on by default for all domains and subdomains which you add through your hosting Control Panel. If needed, you can disable ModSecurity for a certain website or turn on the so-called detection mode in which case the firewall will still function and record data, but shall not do anything to stop possible attacks against your sites. In depth logs shall be accessible in your CP and you'll be able to see which kind of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, and so forth. We use two sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom made ones that our administrators occasionally include to respond to newly identified risks on time.
ModSecurity in VPS Web Hosting
All virtual private servers that are set up with the Hepsia CP come with ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the server, so there will not be anything special which you'll need to do to protect your websites. It will take you only a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what goes on without taking any steps to stop intrusions. You'll be able to view the logs produced in passive or active mode through the corresponding section of Hepsia and find out more about the type of the attack, where it originated from, what rule the firewall used to tackle it, etc. We employ a combination of commercial and custom rules in order to make sure that ModSecurity will block as many threats as possible, hence boosting the security of your web programs as much as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity is available by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain you create on the hosting server. In case that a web application doesn't operate adequately, you could either switch off the firewall or set it to function in passive mode. The second means that ModSecurity shall keep a log of any possible attack which might occur, but will not take any action to stop it. The logs generated in active or passive mode shall give you additional details about the exact file which was attacked, the nature of the attack and the IP it came from, and so on. This info will enable you to choose what measures you can take to enhance the protection of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules which we use are updated constantly with a commercial package from a third-party security enterprise we work with, but occasionally our administrators include their own rules also when they find a new potential threat.