Security Policy

1. Introduction

At Hostex LLC, we prioritize the security and integrity of our infrastructure and client data above all else. This Security Policy details the measures and technologies we've put in place to protect our shared hosting, VPS, VDS, and reseller hosting services from various threats and vulnerabilities.

2. Shared Hosting Security

Our shared hosting servers are fortified with top-notch security solutions and policies, which include:

• Anti-Brute Force Protection: This feature prevents multiple failed login attempts across all services.
• Firewall Configuration: We only enable the necessary ports, which helps minimize potential attack vectors.
• Advanced Firewall (Layer 3): Utilizing Suricata, we conduct deep packet inspection, intrusion detection, and immediate blocking of any malicious traffic.
• Real-Time Threat Mitigation: Our system automatically blocks port scanning attempts, IPs flagged on Spamhaus, SQL injection attempts, and employs over 50 advanced custom security rules.

3. VPS and VDS Security

While all VPS and VDS instances come with all ports open by default, every connection is filtered through our advanced security systems:

• pfBlockerNG: This tool enhances our firewall by blocking known malicious IP addresses, spam sources, applying geo-based restrictions, and utilizing DNS blacklists, ensuring proactive protection at the network edge.
• Suricata: It offers intrusion detection and prevention, packet inspection, anomaly detection, and actively blocks suspicious traffic right at the firewall level.

4. pfBlockerNG Features

To help you better understand how **pfBlockerNG** protects your services, here are some of its key features:

• Blocking traffic from IP ranges found in global blacklists.
• Limiting access based on country or region with GeoIP blocking.
• Safeguarding against DNS-based threats through DNSBL integration.
• Offering flexible rules and automation to tackle evolving threats.

5. Suricata Features

Suricata provides next-generation network monitoring and intrusion prevention with these key features:

• Deep Packet Inspection (DPI) for HTTP, TLS, DNS, and more.
• Real-time intrusion detection and automatic responses to suspicious activities.
• Identification of port scans, malware communication, and exploitation attempts.
• Integration with custom rule sets for advanced, targeted protection.

6. Backup and Disaster Recovery

We have a thorough and automated backup system in place to ensure business continuity and data availability:

• Daily Backups: Kept for the last 7 days.
• Weekly Backups: One backup stored for each of the last 4 weeks.
• Monthly Backups: One monthly backup retained.
• Annual Backup: One yearly snapshot of all data.
• Scope: This applies to VPS, VDS, shared hosting, and reseller accounts.
• Off-Site Redundancy: Backups are stored both in the primary datacenter and at external disaster recovery sites.

7. Commitment to Security

At Hostex LLC, we’re all about keeping your data safe. We’re constantly on the lookout, updating, and enhancing our security systems to tackle new threats and stay ahead of industry standards. When you choose to host with us, you’re getting top-notch protection, solid backup plans, and advanced firewall and intrusion prevention technologies that are built for enterprises.

By using our services, you agree to follow this Security Policy.