ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's employed to prevent attacks against script-driven sites through the use of security rules which contain certain expressions. That way, the firewall can stop hacking and spamming attempts and protect even sites which aren't updated on a regular basis. For instance, multiple failed login attempts to a script administrator area or attempts to execute a certain file with the intention to get access to the script shall trigger specific rules, so ModSecurity will block these activities the second it discovers them. The firewall is quite efficient as it screens the entire HTTP traffic to a site in real time without slowing it down, so it can prevent an attack before any harm is done. It furthermore keeps a very thorough log of all attack attempts which features more information than standard Apache logs, so you could later check out the data and take extra measures to increase the security of your sites if required.

ModSecurity in Hosting

ModSecurity is available on all hosting servers, so if you decide to host your sites with our firm, they will be resistant to an array of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any website if required, or to enable a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You will be able to view detailed logs from your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the safety of our clients' Internet sites seriously, we use a set of commercial rules that we take from one of the leading firms that maintain this sort of rules. Our admins also include custom rules to make certain that your Internet sites shall be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Hosting

We have incorporated ModSecurity as a standard in all semi-dedicated hosting products, so your web apps will be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts shall permit you to enable or disable the firewall for any website with a mouse click. You'll also be able to switch on a passive detection mode through which ModSecurity shall maintain a log of possible attacks without actually preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response this attack initiated, where it came from, etc. The list of rules that we employ is regularly updated as to match any new risks which may appear on the Internet and it features both commercial rules that we get from a security business and custom-written ones which our administrators add if they find a threat that is not present in the commercial list yet.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting Control Panel, so your web programs shall be secured from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if needed, you could disable it with a click from the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall keep a detailed log of any possible attacks without taking any action to prevent them. The logs can be found in the very same section and include details about the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For best security, we employ not just commercial rules from a company operating in the field of web security, but also custom ones which our administrators include manually so as to react to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Hosting

All our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any application which you upload or install will be secured from the very beginning and you will not need to stress about common attacks or vulnerabilities. A separate section inside Hepsia will permit you to start or stop the firewall for every domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall find in the logs shall enable you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked as well as how, what ModSecurity rule was triggered, etcetera. With this info, you can see if a site needs an update, whether you ought to block IPs from accessing your web server, etc. In addition to the third-party commercial security rules for ModSecurity we use, our administrators include custom ones as well when they find a new threat that's not yet in the commercial bundle.