ModSecurity in Hosting
ModSecurity is offered with each hosting solution which we provide and it's turned on by default for every domain or subdomain that you include via your Hepsia Control Panel. If it interferes with any of your applications or you'd like to disable it for any reason, you'll be able to accomplish that through the ModSecurity section of Hepsia with simply a mouse click. You can also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but shall not take any action. You can view detailed logs in the exact same section, including the IP where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, etcetera. For max security of our clients we use a collection of commercial firewall rules combined with custom ones which are included by our system administrators.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting solutions and if you choose to host your sites with our company, there shall not be anything special you'll have to do since the firewall is turned on by default for all domains and subdomains that you add via your hosting Control Panel. If required, you can disable ModSecurity for a given site or enable the so-called detection mode in which case the firewall will still work and record data, but won't do anything to stop potential attacks against your websites. Comprehensive logs shall be readily available within your CP and you'll be able to see what type of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etcetera. We use 2 sorts of rules on our servers - commercial ones from a business which operates in the field of web security, and customized ones that our admins sometimes include to respond to newly discovered risks on time.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting CP, so your web apps will be protected from the moment your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you'll be able to disable it with a click through the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs are available in the very same section and offer details about the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For maximum security, we use not only commercial rules from a business operating in the field of web security, but also custom ones our administrators add personally so as to react to new threats which are still not dealt with in the commercial rules.