- Definitions
- AAAA Records
- Access Log Manager
- Additional RAM
- Administration Services
- Advanced Tools
- Email Aliases
- Antivirus Protection
- APC
- Web Apps Installer
- Auto-responder Emails
- Browsable Daily Backups
- Catch-all Emails
- CentOS
- Live Chat Support
- ClientExec Billing And Support Software
- Genuine Cloud Architecture
- CNAME Records
- Web Hosting Control Panel
- Hardware
- CPanel Control Panel
- CPU Share
- Cron Jobs
- Custom Error Pages
- MX And A Records
- Daily Data Back-up
- Data Centers
- Data Compression
- Debian
- Dedicated IP
- Server Network Hardware
- DirectAdmin Control Panel
- Disk Space
- Domain Backorders
- DomainKeys Identified Mail
- Domain Manager
- Parked Domains
- Domain Registration Transfer
- Dreamweaver Compatible
- Dropbox Backups
- Email Forwarding
- Email Manager
- Enom Domain Name Reseller Account
- EPP Transfer Protection
- Error Log Viewer
- Extensive Online Documentation
- Extra Dedicated IPs
- File Manager
- FTP Accounts
- FTP Manager
- Full DNS Management
- Full WHOIS Management
- Guaranteed RAM
- Hepsia Control Panel
- Domain Names Hosted
- Hotlinking Protection
- Htaccess Generator
- WHOIS Shield
- Imagemagick And GD Library
- InnoDB
- Installation And Troubleshooting
- Instant Account Activation
- Integrated Ticketing System
- IonCube
- IP Blocking
- JailHost
- Email Accounts
- Mailing Lists
- Mailing List Members
- Managed Services Package
- Marketing Tools
- Money Back Guarantee
- Memcached
- Microsoft FPE
- ModSecurity
- Monitoring And Rebooting
- MySQL And Load Stats
- 2.5 Gbit Network Connectivity
- Data Corruption
- Node.js
- No Overselling
- NS Records
- One-Hour Response Guarantee
- Perl Modules
- Password Protected Directories
- Perl
- PostgreSQL Databases
- PgSQL Database Storage
- Phone Support
- PHP 4 And PHP 5 Support
- PhpMyAdmin
- PhpPgAdmin
- Python
- RAID
- Registrar Lock
- Server Reselling Options
- SSI
- Shared SSL IP
- SiteMap Generator
- SMTP Server
- Spam Filters
- SPF Protection
- MySQL Databases
- MySQL Database Storage
- SRV Records
- Data Caching
- SSL Certificate Generator
- Stable Linux With Apache
- Subdomains
- Support
- Bandwidth
- TXT Records
- Ubuntu
- UPS And Diesel Back-up Generator
- Service Uptime
- URL Redirection
- Varnish
- VPN Traffic
- Multiple Control Panels
- Setup Fees
- Multiple OS
- Full Root-level Access
- SSH Telnet
- Web Accelerators
- Online Site Builder
- Web And FTP Statistics
- Web Installer
- Webmail
- Assisted Website Migration
- Website Manager
- Free Site Templates
- Weekly Backup
- Weekly OS Update
- Zend Optimizer
- ZFS Mails And MySQL
- Buy Now
ModSecurity
Find out what ModSecurity is, how it works and precisely what it does in order to protect your sites and apps.
ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is employed to stop attacks against script-driven Internet sites by using security rules that contain certain expressions. In this way, the firewall can stop hacking and spamming attempts and shield even websites which are not updated frequently. For example, several failed login attempts to a script admin area or attempts to execute a specific file with the objective to get access to the script shall trigger specific rules, so ModSecurity will stop these activities the instant it detects them. The firewall is quite efficient since it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any damage is done. It also keeps an exceptionally detailed log of all attack attempts that includes more information than traditional Apache logs, so you could later check out the data and take extra measures to increase the security of your Internet sites if necessary.
-
ModSecurity in Shared Web Hosting
ModSecurity comes standard with all shared web hosting packages that we supply and it'll be switched on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you could switch on and disable it with only a click or set it to detection mode, so it shall keep a log of all attacks, but it will not do anything to prevent them. The log for each of your websites shall contain in-depth info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and include both commercial ones we get from a third-party security firm and custom ones which our system admins include in the event that they detect a new kind of attacks. This way, the sites that you host here will be much more protected without any action required on your end.
- ModSecurity in Dedicated Servers
ModSecurity is available as standard with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain that you create on the hosting server. In case that a web application doesn't function properly, you can either turn off the firewall or set it to work in passive mode. The latter means that ModSecurity shall maintain a log of any potential attack that could take place, but won't take any action to prevent it. The logs created in passive or active mode will present you with more details about the exact file which was attacked, the nature of the attack and the IP address it originated from, and so on. This data will allow you to choose what measures you can take to enhance the security of your Internet sites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we employ are updated often with a commercial package from a third-party security provider we work with, but from time to time our admins add their own rules also in the event that they come across a new potential threat. - ModSecurity in Dedicated Servers