ModSecurity

: Terminology; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Purchase

ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's employed to prevent attacks towards script-driven websites by employing security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and protect even Internet sites that aren't updated frequently. For instance, multiple unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the objective to get access to the script shall trigger certain rules, so ModSecurity shall block these activities the minute it detects them. The firewall is incredibly efficient because it tracks the entire HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any harm is done. It additionally keeps a very detailed log of all attack attempts that includes more information than standard Apache logs, so you can later analyze the data and take further measures to enhance the security of your Internet sites if needed.

ModSecurity in Shared Hosting

ModSecurity is available on all shared hosting machines, so when you decide to host your Internet sites with our company, they will be protected against a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you'll have to do on your end. You will be able to stop ModSecurity for any site if necessary, or to enable a detection mode, so all activity will be recorded, but the firewall won't take any real action. You shall be able to view comprehensive logs through your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the safety of our clients' websites very seriously, we employ a set of commercial rules that we take from one of the leading companies which maintain this kind of rules. Our administrators also include custom rules to ensure that your websites will be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you opt to host your sites with our company, there won't be anything special you will have to do as the firewall is turned on by default for all domains and subdomains you add using your hosting Control Panel. If required, you could disable ModSecurity for a certain website or turn on the so-called detection mode in which case the firewall shall still operate and record data, but won't do anything to prevent potential attacks on your Internet sites. Detailed logs will be accessible in your CP and you'll be able to see what sort of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, and so forth. We employ two sorts of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones which our admins occasionally add to respond to newly found threats promptly.