ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's used to stop attacks towards script-driven websites by employing security rules that contain specific expressions. That way, the firewall can block hacking and spamming attempts and protect even websites which are not updated regularly. For example, several failed login attempts to a script admin area or attempts to execute a specific file with the objective to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the minute it discovers them. The firewall is very efficient because it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It also maintains an incredibly detailed log of all attack attempts which features more information than standard Apache logs, so you could later examine the data and take extra measures to improve the security of your sites if needed.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting plans, so your Internet applications will be protected against harmful attacks. The firewall is activated by default for all domains and subdomains, but in case you would like, you shall be able to stop it using the respective area of your Hepsia CP. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you will discover inside Hepsia are very detailed and offer info about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, and so on. We employ a group of commercial rules which are constantly updated, but sometimes our admins add custom rules as well in order to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you opt to host your Internet sites with us, there won't be anything special you will have to do since the firewall is activated by default for all domains and subdomains which you include via your hosting Control Panel. If necessary, you could disable ModSecurity for a certain website or enable the so-called detection mode in which case the firewall will still operate and record info, but won't do anything to stop possible attacks on your Internet sites. Comprehensive logs will be available in your Control Panel and you'll be able to see what type of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from a business which operates in the field of web security, and custom ones that our admins often add to respond to newly found threats in a timely manner.

ModSecurity in VPS Servers

All VPS servers which are provided with the Hepsia Control Panel come with ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the machine, so there shall not be anything special which you will have to do to protect your Internet sites. It will take you only a click to stop ModSecurity if necessary or to activate its passive mode so that it records what goes on without taking any steps to prevent intrusions. You will be able to view the logs created in passive or active mode from the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to tackle it, and so on. We employ a mix of commercial and custom rules in order to ensure that ModSecurity shall block as many threats as possible, consequently increasing the security of your web applications as much as possible.

ModSecurity in Dedicated Servers

All of our dedicated servers which are installed with the Hepsia hosting Control Panel come with ModSecurity, so any program that you upload or install will be secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. A separate section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you'll discover in the logs shall allow you to to secure your Internet sites better - the IP an attack came from, what site was attacked and how, what ModSecurity rule was triggered, etcetera. With this info, you can see if an Internet site needs an update, whether you ought to block IPs from accessing your web server, etcetera. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones as well when they discover a new threat that's not yet a part of the commercial bundle.