- Glossary
- AAAA Records
- Access Log Manager
- Additional RAM
- Administration Services
- Advanced Tools
- Email Aliases
- Antivirus Protection
- APC
- Apps
- Auto-reply Emails
- Browsable Daily Backups
- Catch-all Emails
- CentOS
- Live Chat Support
- ClientExec Billing And Support Software
- Genuine Cloud Architecture
- CNAME Records
- Hosting Control Panel
- Hardware
- CPanel Control Panel
- CPU Share
- Cron Jobs
- Custom Error Pages
- MX And A Records
- Daily Data Back-up
- Data Centers
- Data Compression
- Debian
- Dedicated IP
- Server Network Hardware
- DirectAdmin Control Panel
- Disk Space
- Domain Backorders
- DomainKeys Identified Mail
- Domain Manager
- Parked Domains
- Domain Registration Transfer
- Dreamweaver Compatible
- Dropbox Backups
- Email Forwarding
- Email Manager
- Enom Domain Name Reseller Account
- EPP Transfer Protection
- Error Log Viewer
- Extensive Online Documentation
- Extra Dedicated IPs
- File Manager
- FTP Accounts
- FTP Manager
- DNS Management
- Full WHOIS Management
- Guaranteed RAM
- Hepsia Control Panel
- Domain Names Hosted
- Hotlink Protection
- Htaccess Generator
- Domain Privacy Protection
- Imagemagick And GD Library
- InnoDB
- Installation And Troubleshooting
- Instant Account Activation
- Integrated Ticketing System
- IonCube
- IP Blocking
- JailHost
- Email Accounts
- Mailing Lists
- Mailing List Members
- Managed Services Package
- Marketing Tools
- Money Back Guarantee
- Memcached
- Microsoft Frontpage Extensions
- ModSecurity
- Monitoring And Rebooting
- MySQL And Load Stats
- 2.5 Gbit Network Connectivity
- Data Corruption
- Node.js
- No Overselling
- NS Records
- One-Hour Response Guarantee
- Perl Modules
- Password Protected Directories
- Perl
- PgSQL Databases
- PostgreSQL Database Storage
- Phone Support
- PHP 4 And PHP 5 Support
- PhpMyAdmin
- PhpPgAdmin
- Python
- RAID
- Registrar Lock
- Server Reselling Options
- Server Side Includes
- Shared SSL IP
- SiteMap Generator
- SMTP Server
- Spam Filters
- SPF Protection
- MySQL Databases
- MySQL Database Storage
- SRV Records
- Data Caching
- SSL Certificate Generator
- Stable Linux With Apache
- Subdomains
- Help Desk
- Bandwidth
- TXT Records
- Ubuntu
- UPS And Diesel Back-up Generator
- Hosting Server Uptime
- URL Redirector
- Varnish
- VPN Traffic
- Multiple Control Panels
- Set-up Fees
- Multiple OS
- Full Root-level Access
- SSH Telnet
- Web Accelerators
- Online Site Builder
- Web And FTP Statistics
- Web Installer
- Webmail
- Assisted Website Migration
- Website Manager
- Free Site Templates
- Weekly Backup
- Weekly OS Update
- Zend Optimizer
- ZFS Mails And MySQL
- Buy Now
ModSecurity
Discover how having ModSecurity activated in your website hosting account will help silently with your website security.
ModSecurity is an effective firewall for Apache web servers that's employed to stop attacks towards web apps. It keeps track of the HTTP traffic to a specific Internet site in real time and blocks any intrusion attempts the instant it identifies them. The firewall uses a set of rules to do that - for example, trying to log in to a script admin area unsuccessfully several times sets off one rule, sending a request to execute a particular file that may result in gaining access to the website triggers another rule, and so on. ModSecurity is amongst the best firewalls on the market and it will protect even scripts that aren't updated regularly as it can prevent attackers from using known exploits and security holes. Quite comprehensive information about every intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the standard logs created by the Apache server, so you may later analyze them and determine whether you need to take more measures so as to enhance the security of your script-driven websites.
-
ModSecurity in Shared Website Hosting
ModSecurity is available with every single shared website hosting package which we offer and it's switched on by default for every domain or subdomain that you add through your Hepsia Control Panel. In case it disrupts any of your programs or you would like to disable it for whatever reason, you will be able to achieve that through the ModSecurity area of Hepsia with only a click. You could also enable a passive mode, so the firewall will discover potential attacks and keep a log, but shall not take any action. You can view detailed logs in the very same section, including the IP address where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so forth. For max safety of our clients we use a group of commercial firewall rules mixed with custom ones which are provided by our system admins.
- ModSecurity in Semi-dedicated Servers
Any web app which you set up inside your new semi-dedicated server account shall be protected by ModSecurity as the firewall is included with all our hosting plans and is activated by default for any domain and subdomain you add or create using your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated section in Hepsia where not simply could you activate or deactivate it fully, but you could also enable a passive mode, so the firewall will not block anything, but it shall still maintain a record of potential attacks. This takes simply a mouse click and you will be able to look at the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was handled, and so on. The firewall employs 2 sets of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one that our admins update manually as to respond to recently discovered risks as quickly as possible.- ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting CP, so your web apps shall be protected from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you can disable it with a mouse click through the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall keep an extensive log of any potential attacks without taking any action to stop them. The logs are available inside the exact same section and include details about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For maximum security, we employ not just commercial rules from a business working in the field of web security, but also custom ones our administrators include manually in order to react to new threats that are still not addressed in the commercial rules.- ModSecurity in Dedicated Servers
When you decide to host your sites on a dedicated server with the Hepsia CP, your web applications will be secured immediately because ModSecurity is provided with all Hepsia-based solutions. You will be able to regulate the firewall easily and if required, you shall be able to turn it off or activate its passive mode when it'll only keep a log of what is happening without taking any action to stop potential attacks. The logs that you'll find inside the very same section of the Control Panel are extremely detailed and contain data about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, and so on. This information shall allow you to take measures and improve the security of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our administrators add whenever they identify attacks which have not yet been included inside the commercial pack. - ModSecurity in Semi-dedicated Servers