ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is used to prevent attacks towards script-driven websites by employing security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and shield even sites that aren't updated frequently. For example, several failed login attempts to a script administrator area or attempts to execute a particular file with the objective to get access to the script will trigger specific rules, so ModSecurity shall block these activities the instant it identifies them. The firewall is extremely efficient since it monitors the entire HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any damage is done. It additionally maintains an incredibly comprehensive log of all attack attempts which includes more information than standard Apache logs, so you could later analyze the data and take further measures to enhance the security of your Internet sites if required.

ModSecurity in Shared Hosting

We provide ModSecurity with all shared hosting solutions, so your web apps will be resistant to destructive attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you will be able to stop it via the respective area of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you will discover in Hepsia are incredibly detailed and offer data about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, etcetera. We use a set of commercial rules which are frequently updated, but sometimes our administrators add custom rules as well in order to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

We have incorporated ModSecurity by default in all semi-dedicated hosting plans, so your web apps will be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts shall permit you to switch on or disable the firewall for any website with a click. You shall also be able to switch on a passive detection mode through which ModSecurity shall maintain a log of possible attacks without actually preventing them. The thorough logs include the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so forth. The list of rules we employ is frequently updated as to match any new risks which might appear on the Internet and it includes both commercial rules that we get from a security firm and custom-written ones that our administrators include in the event that they discover a threat which is not present within the commercial list yet.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting CP, so your web apps shall be secured from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you could deactivate it with a click via the corresponding section of Hepsia. You can also set it to function in detection mode, so it will maintain an extensive log of any possible attacks without taking any action to prevent them. The logs can be found within the exact same section and offer information regarding the nature of the attack, what IP address it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not only commercial rules from a firm working in the field of web security, but also custom ones our admins include manually in order to react to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Hosting

All our dedicated servers which are set up with the Hepsia hosting CP come with ModSecurity, so any application which you upload or set up will be properly secured from the very beginning and you will not need to concern yourself with common attacks or vulnerabilities. A separate section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you'll find in the logs can help you to secure your websites better - the IP an attack came from, what site was attacked and in what way, what ModSecurity rule was triggered, and so on. With this information, you'll be able to see if an Internet site needs an update, whether you need to block IPs from accessing your hosting server, etcetera. Aside from the third-party commercial security rules for ModSecurity that we use, our admins include custom ones as well whenever they come across a new threat which is not yet in the commercial bundle.