ModSecurity in Cloud Hosting
ModSecurity is available with every cloud hosting solution that we offer and it's switched on by default for every domain or subdomain that you add via your Hepsia Control Panel. In case it interferes with any of your applications or you'd like to disable it for whatever reason, you shall be able to do that through the ModSecurity area of Hepsia with only a click. You could also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but shall not take any action. You'll be able to see detailed logs in the very same section, including the IP where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For maximum protection of our customers we use a set of commercial firewall rules combined with custom ones that are provided by our system admins.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server plans that we offer come with ModSecurity and because the firewall is switched on by default, any Internet site which you set up under a domain or a subdomain will be protected right away. A separate section in the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to stop and start the firewall for any site or switch on a detection mode. With the last mentioned, ModSecurity won't take any action, but it will still recognize possible attacks and shall keep all data within a log as if it were fully active. The logs can be found in the exact same section of the CP and they include details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we employ on our servers are a mix of commercial ones from a security business and custom ones created by our system admins. Therefore, we offer increased security for your web apps as we can defend them from attacks even before security companies release updates for brand new threats.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers that are set up with our Hepsia CP and you'll not have to do anything specific on your end to use it since it is activated by default each time you include a new domain or subdomain on your server. If it disrupts some of your programs, you will be able to stop it via the respective section of Hepsia, or you can leave it working in passive mode, so it'll identify attacks and shall still maintain a log for them, but shall not stop them. You could examine the logs later to find out what you can do to enhance the security of your Internet sites since you'll find information such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity responded, and so on. The rules which we employ are commercial, therefore they are regularly updated by a security firm, but to be on the safe side, our administrators also include custom rules from time to time as to deal with any new threats they have identified.