ModSecurity in Web Hosting
We offer ModSecurity with all web hosting solutions, so your Internet apps will be resistant to harmful attacks. The firewall is switched on as standard for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective area of your Hepsia CP. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you'll discover in Hepsia are very detailed and feature info about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, etc. We use a group of commercial rules which are often updated, but sometimes our admins add custom rules as well in order to efficiently protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting packages and if you choose to host your websites with us, there won't be anything special you'll need to do given that the firewall is activated by default for all domains and subdomains which you add using your hosting CP. If required, you'll be able to disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall shall still work and record info, but will not do anything to prevent possible attacks against your sites. Comprehensive logs shall be accessible within your Control Panel and you shall be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks originated from, etcetera. We employ two kinds of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones which our administrators sometimes add to respond to newly identified threats on time.
ModSecurity in Dedicated Web Hosting
ModSecurity comes with all dedicated servers that are set up with our Hepsia CP and you will not need to do anything specific on your end to employ it because it's turned on by default every time you add a new domain or subdomain on your hosting server. In the event that it disrupts any of your programs, you'll be able to stop it through the respective section of Hepsia, or you can leave it working in passive mode, so it shall identify attacks and shall still keep a log for them, but won't stop them. You could examine the logs later to learn what you can do to enhance the safety of your sites as you will find information such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity reacted, and so on. The rules that we employ are commercial, thus they are regularly updated by a security provider, but to be on the safe side, our admins also add custom rules every now and then in order to deal with any new threats they have found.