ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's used to stop attacks towards script-driven Internet sites by using security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and shield even Internet sites which aren't updated on a regular basis. For instance, multiple unsuccessful login attempts to a script admin area or attempts to execute a particular file with the purpose to get access to the script will trigger certain rules, so ModSecurity shall block these activities the instant it identifies them. The firewall is very efficient since it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it could prevent an attack before any harm is done. It furthermore keeps an exceptionally comprehensive log of all attack attempts that features more info than standard Apache logs, so you can later examine the data and take further measures to improve the security of your Internet sites if necessary.

ModSecurity in Cloud Hosting

ModSecurity is available on all cloud hosting web servers, so when you decide to host your Internet sites with our firm, they shall be shielded from a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you'll need to do on your end. You'll be able to stop ModSecurity for any Internet site if required, or to switch on a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs through your Hepsia CP including the IP address where the attack came from, what the attacker wished to do and how ModSecurity handled the threat. Since we take the security of our clients' sites very seriously, we use a group of commercial rules which we get from one of the leading companies which maintain such rules. Our administrators also include custom rules to ensure that your websites shall be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server plans and if you choose to host your Internet sites with us, there shall not be anything special you'll need to do given that the firewall is switched on by default for all domains and subdomains that you add using your hosting CP. If required, you can disable ModSecurity for a particular Internet site or activate the so-called detection mode in which case the firewall shall still operate and record data, but won't do anything to prevent possible attacks against your sites. Thorough logs will be available in your Control Panel and you will be able to see what type of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, etc. We employ two sorts of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom ones that our administrators often include to respond to newly found risks promptly.

ModSecurity in VPS Servers

Safety is very important to us, so we set up ModSecurity on all VPS servers which are made available with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section within Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you'll not have to do anything by hand. You will also be able to deactivate it or switch on the so-called detection mode, so it'll keep a log of possible attacks you can later analyze, but will not block them. The logs in both passive and active modes include info about the kind of the attack and how it was prevented, what IP it originated from and other important information which could help you to tighten the security of your websites by updating them or blocking IPs, for example. In addition to the commercial rules that we get for ModSecurity from a third-party security firm, we also employ our own rules because every now and then we discover specific attacks which are not yet present within the commercial pack. This way, we can increase the security of your Virtual private server in a timely manner instead of waiting for a certified update.

ModSecurity in Dedicated Servers

When you choose to host your websites on a dedicated server with the Hepsia CP, your web applications shall be protected right from the start because ModSecurity is supplied with all Hepsia-based plans. You'll be able to control the firewall without difficulty and if needed, you shall be able to turn it off or enable its passive mode when it shall only keep a log of what is occurring without taking any action to prevent potential attacks. The logs which you'll find inside the very same section of the CP are quite detailed and include info about the attacker IP address, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, etcetera. This data will permit you to take measures and enhance the security of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our administrators add whenever they detect attacks that haven't yet been included in the commercial pack.