- Hosting Definitions
- Additional RAM
- Administration Services
- Advanced Tools
- Email Aliases
- Antivirus Protection
- APC
- 1-Click Applications Installer
- Auto-responder Emails
- Browsable Daily Backups
- Catch-all Emails
- CentOS
- Live Chat Support
- ClientExec Billing And Support Software
- Genuine Cloud Architecture
- CNAME Records
- Web Hosting Control Panel
- Hardware
- CPanel Control Panel
- CPU Share
- Cron Jobs
- Custom Error Pages
- Custom MX and A Records
- Daily Data Back-up
- Data Centers
- Data Compression
- Debian
- Dedicated IP Address
- Server Network Hardware
- DirectAdmin Control Panel
- Disk Space
- Domain Backorders
- DomainKeys Identified Mail
- Domain Manager
- Parked Domain Names
- Domain Registration Transfer
- Dreamweaver Compatibility
- Dropbox Backups
- Email Forwarding
- Email Manager
- Enom Domain Name Reseller Account
- EPP Transfer Protection
- Error Log Viewer
- Extensive Online Documentation
- Extra Dedicated IPs
- File Manager
- FTP Accounts
- FTP Manager
- DNS Management
- WHOIS Management
- Guaranteed RAM
- Hepsia Control Panel
- Hosted Domains
- Hotlink Protection
- Htaccess Generator
- WHOIS Privacy Protection
- Imagemagick And GD Library
- InnoDB
- Installation And Troubleshooting
- Integrated Ticketing System
- IonCube
- IP Blocking
- JailHost
- Email Accounts
- Mailing Lists
- Mailing List Members
- Managed Services Package
- Marketing Tools
- Money Back Guarantee
- Memcached
- Microsoft FPE
- ModSecurity
- Monitoring And Rebooting
- MySQL And Load Stats
- 2.5 Gbit Network Connectivity
- Data Corruption
- Node.js
- No Overselling
- NS Records
- One-Hour Response Guarantee
- Perl Modules
- Password Protected Directories
- Perl Scripting
- PgSQL Databases
- PostgreSQL Database Storage
- Phone Support
- PHP 4 PHP 5 And PHP 7 Support
- PhpMyAdmin
- PhpPgAdmin
- Python
- RAID
- Registrar Lock
- Server Reselling Options
- Serverside Includes
- Shared SSL IP
- SiteMap Generator
- SMTP Server
- Spam Filters
- SPF Protection
- MySQL Databases
- MySQL Database Storage
- SRV Records
- Data Caching
- SSL Certificate Generator
- Stable Linux With Apache
- Subdomains
- Support
- Bandwidth
- TXT Records
- Ubuntu
- UPS And Diesel Back-up Generator
- Hosting Service Uptime
- URL Redirector
- Varnish
- VPN Traffic
- Multiple Control Panels
- Set-up Fees
- Multiple OS
- Full Root-level Access
- SSH Telnet
- Web Accelerators
- Online Site Builder
- Web And FTP Statistics
- Web Installer
- Webmail
- Assisted Website Migration
- Website Manager
- Free Website Themes
- Weekly Backup
- Weekly OS Update
- Zend Optimizer
- ZFS Mails And MySQL
- Purchase
ModSecurity
Discover how having ModSecurity activated in your web hosting account will help silently with your website protection.
ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is employed to prevent attacks against script-driven sites by employing security rules that contain specific expressions. This way, the firewall can stop hacking and spamming attempts and shield even websites which aren't updated regularly. For example, a number of failed login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script shall trigger specific rules, so ModSecurity shall stop these activities the instant it identifies them. The firewall is incredibly efficient as it monitors the entire HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any damage is done. It furthermore maintains a very comprehensive log of all attack attempts that contains more info than conventional Apache logs, so you can later analyze the data and take extra measures to enhance the security of your Internet sites if required.
-
ModSecurity in Shared Hosting
We offer ModSecurity with all shared hosting packages, so your web applications shall be shielded from malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you'd like, you shall be able to stop it through the respective part of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you'll discover inside Hepsia are very detailed and include data about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, and so on. We employ a set of commercial rules that are often updated, but sometimes our admins add custom rules as well in order to efficiently protect the sites hosted on our machines.
- ModSecurity in Semi-dedicated Hosting
Any web program that you set up in your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall is included with all our hosting packages and is activated by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated section in Hepsia where not simply can you activate or deactivate it entirely, but you can also enable a passive mode, so the firewall won't block anything, but it will still maintain an archive of potential attacks. This requires only a click and you'll be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, etc. The firewall uses 2 groups of rules on our web servers - a commercial one that we get from a third-party web security firm and a custom one that our administrators update manually in order to respond to newly discovered risks at the earliest opportunity.- ModSecurity in VPS Hosting
Security is of the utmost importance to us, so we install ModSecurity on all virtual private servers that are set up with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section in Hepsia and is turned on automatically when you include a new domain or generate a subdomain, so you will not have to do anything by hand. You will also be able to deactivate it or activate the so-called detection mode, so it will keep a log of potential attacks that you can later examine, but shall not block them. The logs in both passive and active modes include info regarding the type of the attack and how it was prevented, what IP it came from and other useful info which might help you to tighten the security of your sites by updating them or blocking IPs, as an example. Besides the commercial rules that we get for ModSecurity from a third-party security enterprise, we also employ our own rules as from time to time we detect specific attacks that aren't yet present within the commercial pack. That way, we can increase the protection of your VPS promptly rather than awaiting a certified update.- ModSecurity in Dedicated Web Hosting
ModSecurity comes with all dedicated servers that are set up with our Hepsia CP and you won't need to do anything specific on your end to employ it because it is activated by default every time you add a new domain or subdomain on your web server. If it disrupts any of your applications, you'll be able to stop it via the respective section of Hepsia, or you can leave it in passive mode, so it'll recognize attacks and will still keep a log for them, but shall not prevent them. You could examine the logs later to learn what you can do to improve the security of your websites since you shall find info such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity responded, etcetera. The rules which we employ are commercial, therefore they're frequently updated by a security firm, but to be on the safe side, our admins also add custom rules occasionally as to respond to any new threats they have discovered. - ModSecurity in Semi-dedicated Hosting