ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to prevent attacks against script-driven Internet sites by employing security rules which contain certain expressions. That way, the firewall can block hacking and spamming attempts and preserve even sites which are not updated on a regular basis. For instance, multiple failed login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script will trigger certain rules, so ModSecurity will block out these activities the second it identifies them. The firewall is extremely efficient because it monitors the entire HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It furthermore keeps an incredibly detailed log of all attack attempts that includes more info than typical Apache logs, so you can later check out the data and take additional measures to boost the security of your Internet sites if required.

ModSecurity in Shared Hosting

ModSecurity is available with each shared hosting package which we offer and it is switched on by default for every domain or subdomain that you include via your Hepsia Control Panel. In case it disrupts any of your apps or you'd like to disable it for some reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with only a click. You could also use a passive mode, so the firewall will discover potential attacks and keep a log, but shall not take any action. You can view extensive logs in the very same section, including the IP where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, etcetera. For maximum safety of our customers we use a set of commercial firewall rules mixed with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity as a standard in all semi-dedicated hosting packages, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts shall permit you to enable or turn off the firewall for any Internet site with a click. You'll also have the ability to switch on a passive detection mode through which ModSecurity will keep a log of potential attacks without really stopping them. The detailed logs contain the nature of the attack and what ModSecurity response that attack triggered, where it came from, and so on. The list of rules that we use is constantly updated in order to match any new risks which may appear on the Internet and it includes both commercial rules that we get from a security firm and custom-written ones that our admins include in case they find a threat that is not present within the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity comes with all Hepsia-based virtual private servers that we offer and it shall be switched on automatically for every new domain or subdomain which you include on the server. In this way, any web app that you install shall be secured immediately without doing anything personally on your end. The firewall could be managed from the section of the Control Panel which bears the same name. This is the area whereyou can turn off ModSecurity or let its passive mode, so it won't take any action against threats, but will still maintain a detailed log. The recorded info is available within the same area as well and you'll be able to see what IPs any attacks originated from to enable you to block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules which we use on our servers are a mixture between commercial ones which we obtain from a security organization and custom ones that are added by our admins to optimize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers that are set up with the Hepsia hosting Control Panel feature ModSecurity, so any application you upload or install will be secured from the very beginning and you will not need to stress about common attacks or vulnerabilities. A separate section within Hepsia will permit you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you'll find in the logs can easily help you to secure your websites better - the IP an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this information, you'll be able to see whether a website needs an update, whether you should block IPs from accessing your server, etc. In addition to the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too every time they discover a new threat which is not yet included in the commercial bundle.