ModSecurity in Website Hosting
ModSecurity comes by default with all website hosting packages which we supply and it shall be activated automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and deactivate it with just a click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to stop them. The log for each of your sites shall include in-depth info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules we use are constantly updated and comprise of both commercial ones that we get from a third-party security company and custom ones which our system admins include in case that they detect a new kind of attacks. This way, the websites which you host here will be way more protected with no action expected on your end.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting packages which we offer include ModSecurity and since the firewall is turned on by default, any site which you create under a domain or a subdomain will be secured right from the start. An independent section in the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to start and stop the firewall for any website or activate a detection mode. With the last mentioned, ModSecurity won't take any action, but it will still recognize possible attacks and shall keep all information inside a log as if it were completely active. The logs can be found inside the exact same section of the CP and they feature specifics about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules that we use on our servers are a mix of commercial ones from a security company and custom ones created by our system admins. Therefore, we offer increased security for your web applications as we can protect them from attacks even before security businesses release updates for completely new threats.
ModSecurity in Dedicated Hosting
ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain that you create on the web server. In the event that a web application doesn't work correctly, you may either disable the firewall or set it to function in passive mode. The latter means that ModSecurity shall maintain a log of any possible attack that could happen, but won't take any action to stop it. The logs generated in passive or active mode shall present you with additional details about the exact file which was attacked, the form of the attack and the IP it originated from, and so forth. This info will permit you to choose what actions you can take to boost the security of your websites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules we use are updated often with a commercial pack from a third-party security enterprise we work with, but sometimes our administrators include their own rules too in the event that they discover a new potential threat.