ModSecurity in Shared Web Hosting
We provide ModSecurity with all shared web hosting plans, so your Internet applications shall be shielded from malicious attacks. The firewall is switched on by default for all domains and subdomains, but if you'd like, you shall be able to stop it via the respective part of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you shall find inside Hepsia are extremely detailed and include information about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, etc. We employ a group of commercial rules that are regularly updated, but sometimes our admins include custom rules as well in order to efficiently protect the sites hosted on our servers.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting CP, so your web applications shall be secured from the instant your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you can deactivate it with a click of your mouse via the corresponding section of Hepsia. You may also set it to function in detection mode, so it'll maintain a comprehensive log of any potential attacks without taking any action to stop them. The logs can be found inside the very same section and provide information regarding the nature of the attack, what IP address it originated from and what ModSecurity rule was initiated to stop it. For optimum security, we use not just commercial rules from a firm working in the field of web security, but also custom ones our administrators include manually so as to react to new risks which are still not tackled in the commercial rules.