ModSecurity in Hosting
ModSecurity can be found with every hosting plan which we offer and it's activated by default for any domain or subdomain that you add via your Hepsia Control Panel. In case it disrupts any of your apps or you'd like to disable it for some reason, you will be able to do that through the ModSecurity section of Hepsia with merely a mouse click. You could also activate a passive mode, so the firewall will discover potential attacks and keep a log, but shall not take any action. You could see extensive logs in the very same section, including the IP address where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For optimum safety of our clients we use a set of commercial firewall rules mixed with custom ones which are provided by our system admins.
ModSecurity in Semi-dedicated Servers
Any web program that you set up in your new semi-dedicated server account shall be protected by ModSecurity because the firewall is provided with all our hosting plans and is activated by default for any domain and subdomain you include or create through your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section in Hepsia where not only could you activate or deactivate it completely, but you can also enable a passive mode, so the firewall won't stop anything, but it will still keep a record of possible attacks. This requires just a mouse click and you shall be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, etc. The firewall employs 2 groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one that our admins update personally in order to respond to newly discovered risks immediately.
ModSecurity in VPS Servers
All VPS servers that are provided with the Hepsia Control Panel feature ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the web server, so there will not be anything special that you shall have to do to protect your Internet sites. It shall take you a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what occurs without taking any steps to prevent intrusions. You will be able to look at the logs generated in passive or active mode through the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall employed to take care of it, etcetera. We use a mixture of commercial and custom rules so as to make certain that ModSecurity will block as many risks as possible, hence increasing the security of your web programs as much as possible.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers which are set up with our Hepsia Control Panel and you will not have to do anything specific on your end to employ it because it's switched on by default every time you include a new domain or subdomain on your web server. In case it interferes with some of your programs, you shall be able to stop it via the respective part of Hepsia, or you can leave it in passive mode, so it will identify attacks and will still maintain a log for them, but will not stop them. You may analyze the logs later to learn what you can do to improve the protection of your websites as you'll find info such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity reacted, etc. The rules that we use are commercial, therefore they are regularly updated by a security firm, but to be on the safe side, our administrators also include custom rules every now and then in order to react to any new threats they have found.