ModSecurity in Cloud Website Hosting
We provide ModSecurity with all cloud website hosting plans, so your Internet apps shall be shielded from harmful attacks. The firewall is switched on as standard for all domains and subdomains, but if you would like, you will be able to stop it via the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall find inside Hepsia are very detailed and offer info about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, and so forth. We use a range of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our servers.
ModSecurity in VPS Web Hosting
All virtual private servers which are set up with the Hepsia Control Panel come with ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the web server, so there will not be anything special that you'll have to do to protect your sites. It'll take you only a mouse click to stop ModSecurity if needed or to switch on its passive mode so that it records what happens without taking any actions to stop intrusions. You shall be able to view the logs produced in passive or active mode through the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall employed to deal with it, etcetera. We use a mixture of commercial and custom rules so as to ensure that ModSecurity will block as many threats as possible, therefore increasing the protection of your web programs as much as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity is provided with all dedicated servers which are set up with our Hepsia CP and you will not have to do anything specific on your end to use it as it's turned on by default every time you include a new domain or subdomain on your server. If it disrupts any of your programs, you will be able to stop it through the respective area of Hepsia, or you could leave it operating in passive mode, so it'll identify attacks and shall still keep a log for them, but won't prevent them. You could analyze the logs later to learn what you can do to increase the safety of your websites as you'll find details such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity reacted, and so forth. The rules we use are commercial, therefore they are frequently updated by a security provider, but to be on the safe side, our admins also add custom rules every now and then in order to deal with any new threats they have identified.