ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is employed to stop attacks toward script-driven sites by employing security rules which contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and shield even websites that aren't updated frequently. For instance, multiple unsuccessful login attempts to a script administrator area or attempts to execute a certain file with the intention to get access to the script shall trigger particular rules, so ModSecurity will stop these activities the second it detects them. The firewall is very efficient since it screens the entire HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It furthermore maintains an exceptionally comprehensive log of all attack attempts which includes more info than conventional Apache logs, so you could later examine the data and take extra measures to increase the security of your websites if needed.

ModSecurity in Cloud Website Hosting

ModSecurity comes by default with all cloud website hosting plans which we provide and it will be switched on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and disable it with simply a click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to stop them. The log for each of your Internet sites will feature elaborate info including the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are constantly updated and incorporate both commercial ones which we get from a third-party security firm and custom ones that our system administrators include in the event that they detect a new type of attacks. That way, the websites you host here will be a lot more secure without any action required on your end.

ModSecurity in Semi-dedicated Servers

We have integrated ModSecurity by default within all semi-dedicated server packages, so your web applications shall be protected as soon as you install them under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts shall permit you to enable or disable the firewall for any website with a mouse click. You'll also have the ability to turn on a passive detection mode in which ModSecurity will maintain a log of potential attacks without really preventing them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack caused, where it originated from, etc. The list of rules that we use is constantly updated in order to match any new threats which may appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones which our administrators add if they discover a threat that's not present inside the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting CP, so your web applications shall be secured from the instant your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you can deactivate it with a click of your mouse through the corresponding section of Hepsia. You can also set it to function in detection mode, so it will maintain a detailed log of any potential attacks without taking any action to prevent them. The logs are available in the same section and offer details about the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For best security, we use not simply commercial rules from a business operating in the field of web security, but also custom ones which our administrators include personally in order to react to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you won't need to do anything specific on your end to employ it since it is turned on by default each time you include a new domain or subdomain on your web server. If it interferes with some of your programs, you will be able to stop it through the respective part of Hepsia, or you could leave it in passive mode, so it will identify attacks and shall still keep a log for them, but shall not stop them. You'll be able to look at the logs later to find out what you can do to boost the protection of your websites since you will find details such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, etcetera. The rules we employ are commercial, thus they are regularly updated by a security company, but to be on the safe side, our staff also include custom rules occasionally in order to deal with any new threats they have identified.