ModSecurity in Web Hosting
We offer ModSecurity with all web hosting solutions, so your web applications shall be shielded from destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you'll be able to stop it using the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will discover in Hepsia are quite detailed and offer info about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, etc. We employ a range of commercial rules which are regularly updated, but sometimes our administrators include custom rules as well in order to efficiently protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting plans and if you choose to host your sites with us, there shall not be anything special you'll have to do as the firewall is turned on by default for all domains and subdomains that you include via your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a given Internet site or turn on the so-called detection mode in which case the firewall shall still function and record information, but won't do anything to prevent possible attacks on your sites. Detailed logs will be readily available in your Control Panel and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks came from, etc. We employ 2 kinds of rules on our servers - commercial ones from a company that operates in the field of web security, and custom made ones which our admins occasionally include to respond to newly identified risks on time.
ModSecurity in Dedicated Servers Hosting
ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it since it is switched on by default each time you include a new domain or subdomain on your server. In the event that it disrupts any of your programs, you'll be able to stop it via the respective area of Hepsia, or you can leave it operating in passive mode, so it'll identify attacks and shall still maintain a log for them, but will not prevent them. You could analyze the logs later to determine what you can do to enhance the security of your sites since you will find information such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity responded, etcetera. The rules we employ are commercial, thus they're regularly updated by a security company, but to be on the safe side, our admins also add custom rules occasionally in order to respond to any new threats they have identified.