ModSecurity

: Terminology; AAAA Records; Access Log Manager; Additional RAM; Administration Services; Advanced Tools; Email Aliases; Antivirus Protection; APC; 1-Click Applications Installer; Auto-responder Emails; Browsable Daily Backups; Catch-all Emails; CentOS; Live Chat Support; ClientExec Billing And Support Software; Genuine Cloud Architecture; CNAME Records; Control Panel; Hardware; CPanel Control Panel; CPU Share; Cron Jobs; Custom Error Pages; MX And A Records; Daily Data Back-up; Data Centers; Data Compression; Debian; Dedicated IP Address; Server Network Hardware; DirectAdmin Control Panel; Disk Space; Domain Backorders; DomainKeys Identified Mail; Domain Manager; Parked Domains; Domain Registration Transfer; Dreamweaver Compatibility; Dropbox Backups; Email Forwarding; Email Manager; Enom Domain Name Reseller Account; EPP Transfer Protection; Error Log Viewer; Extensive Online Documentation; Extra Dedicated IPs; File Manager; FTP Accounts; FTP Manager; Full DNS Management; Full WHOIS Management; Guaranteed RAM; Hepsia Control Panel; Hosted Domains; Hotlinking Protection; Htaccess Generator; Domain Info WHOIS Privacy Protection; Imagemagick And GD Library; InnoDB; Installation And Troubleshooting; Instant Account Activation; Integrated Ticketing System; IonCube; IP Blocking; JailHost; Email Accounts; Mailing Lists; Mailing List Members; Managed Services Package; Marketing Tools; Money Back Guarantee; Memcached; Microsoft FPE; ModSecurity; Monitoring And Rebooting; MySQL And Load Stats; 2.5 Gbit Network Connectivity; Data Corruption; Node.js; No Overselling; NS Records; One-Hour Response Guarantee; Perl Modules; Password Protected Directories; Perl; PostgreSQL Databases; PostgreSQL Database Storage; Phone Support; PHP 4 PHP 5 And PHP 7 Support; PhpMyAdmin; PhpPgAdmin; Python; RAID; Registrar Lock; Server Reselling Options; Server Side Includes; Shared SSL IP; SiteMap Generator; SMTP Server; Spam Filters; SPF Protection; MySQL Databases; MySQL Database Storage; SRV Records; Data Caching; SSL Certificate Generator; Stable Linux With Apache; Subdomains; Customer Support; Data Traffic; TXT Records; Ubuntu; UPS And Diesel Back-up Generator; Service Uptime; URL Redirector; Varnish; VPN Traffic; Multiple Control Panels; Set-up Fee; Multiple OS; Full Root-level Access; SSH Telnet; Web Accelerators; Online Website Builder; Web And FTP Statistics; Web Installer; Webmail; Assisted Website Migration; Website Manager; Free Site Themes; Weekly Backup; Weekly OS Update; Zend Optimizer; ZFS Mails And MySQL; Get Started

ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its operation and in case it discovers an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the website visitors than any web server does, so you'll be able to monitor what's going on with your Internet sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it recognizes if someone is attempting to log in to the administration area of a particular script multiple times or if a request is sent to execute a file with a specific command. In such situations these attempts set off the corresponding rules and the firewall hinders the attempts in real time, then records in-depth information about them inside its logs. ModSecurity is amongst the very best software firewalls available and it can easily protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Shared Web Hosting

ModSecurity is supplied with all shared web hosting web servers, so when you decide to host your sites with our organization, they'll be protected against a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there will be nothing you'll need to do on your end. You shall be able to stop ModSecurity for any Internet site if needed, or to activate a detection mode, so all activity will be recorded, but the firewall will not take any real action. You will be able to view specific logs using your Hepsia CP including the IP address where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the safety of our customers' websites very seriously, we use a selection of commercial rules that we take from one of the best companies which maintain this sort of rules. Our administrators also include custom rules to ensure that your websites will be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer come with ModSecurity and because the firewall is turned on by default, any Internet site which you build under a domain or a subdomain will be protected right from the start. An independent section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to stop and start the firewall for any site or enable a detection mode. With the last option, ModSecurity won't take any action, but it'll still identify possible attacks and will keep all information within a log as if it were fully active. The logs could be found inside the same section of the Control Panel and they offer details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, etc. The security rules which we employ on our web servers are a mix between commercial ones from a security company and custom ones developed by our system administrators. As a result, we provide increased security for your web applications as we can shield them from attacks before security businesses release updates for brand new threats.

ModSecurity in VPS Web Hosting

ModSecurity is provided with all Hepsia-based virtual private servers we offer and it'll be activated automatically for every new domain or subdomain you include on the web server. In this way, any web app which you install shall be protected right away without doing anything manually on your end. The firewall may be managed from the section of the Control Panel that bears the same name. This is the area whereyou'll be able to turn off ModSecurity or enable its passive mode, so it shall not take any action towards threats, but shall still maintain a detailed log. The recorded information is available in the same area as well and you will be able to see what IPs any attacks came from so that you block them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules which we use on our servers are a blend between commercial ones which we obtain from a security firm and custom ones which are included by our staff to optimize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers Hosting

If you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web applications shall be protected immediately since ModSecurity is supplied with all Hepsia-based solutions. You shall be able to manage the firewall without difficulty and if needed, you'll be able to turn it off or activate its passive mode when it'll only maintain a log of what's occurring without taking any action to prevent possible attacks. The logs which you will find in the exact same section of the Control Panel are extremely detailed and contain data about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so forth. This info will permit you to take measures and enhance the security of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our admins add when they recognize attacks which haven't yet been included within the commercial pack.