ModSecurity in Cloud Hosting
We offer ModSecurity with all cloud hosting plans, so your web apps will be shielded from malicious attacks. The firewall is activated as standard for all domains and subdomains, but in case you would like, you shall be able to stop it using the respective section of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you will find in Hepsia are very detailed and offer information about the nature of any attack, when it occurred and from what IP address, the firewall rule that was triggered, etc. We employ a group of commercial rules that are regularly updated, but sometimes our admins add custom rules as well so as to efficiently protect the websites hosted on our servers.
ModSecurity in Dedicated Web Hosting
ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain that you create on the hosting server. Just in case that a web app does not operate adequately, you could either turn off the firewall or set it to function in passive mode. The latter means that ModSecurity will maintain a log of any possible attack which could happen, but will not take any action to prevent it. The logs created in passive or active mode will offer you additional details about the exact file which was attacked, the nature of the attack and the IP it originated from, etcetera. This data shall allow you to decide what steps you can take to increase the security of your Internet sites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we use are updated often with a commercial package from a third-party security provider we work with, but oftentimes our admins include their own rules as well in case they find a new potential threat.