ModSecurity in Cloud Web Hosting
ModSecurity is available with every single cloud web hosting plan that we provide and it is turned on by default for every domain or subdomain that you add through your Hepsia Control Panel. In case it disrupts any of your applications or you'd like to disable it for some reason, you'll be able to accomplish that through the ModSecurity area of Hepsia with simply a click. You can also enable a passive mode, so the firewall will recognize potential attacks and maintain a log, but will not take any action. You can view extensive logs in the very same section, including the IP where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, and so forth. For maximum protection of our clients we use a set of commercial firewall rules blended with custom ones which are provided by our system admins.
ModSecurity in Semi-dedicated Hosting
We have included ModSecurity as a standard inside all semi-dedicated hosting packages, so your web applications will be protected whenever you install them under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts shall allow you to activate or disable the firewall for any site with a mouse click. You'll also be able to switch on a passive detection mode in which ModSecurity shall keep a log of potential attacks without actually stopping them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack activated, where it came from, etcetera. The list of rules we use is constantly updated as to match any new threats that might appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones which our administrators include in the event that they discover a threat that is not present in the commercial list yet.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting Control Panel, so your web applications will be secured from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you'll be able to deactivate it with a mouse click through the corresponding section of Hepsia. You can also set it to function in detection mode, so it'll maintain an extensive log of any possible attacks without taking any action to stop them. The logs are available in the same section and include information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we use not simply commercial rules from a business operating in the field of web security, but also custom ones our administrators include manually in order to respond to new risks that are still not tackled in the commercial rules.