ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to stop attacks toward script-driven sites through the use of security rules that contain particular expressions. That way, the firewall can prevent hacking and spamming attempts and preserve even websites that are not updated often. For instance, multiple failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the second it detects them. The firewall is very efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it could stop an attack before any harm is done. It also maintains a very detailed log of all attack attempts which includes more info than traditional Apache logs, so you can later examine the data and take additional measures to improve the security of your websites if necessary.

ModSecurity in Website Hosting

ModSecurity can be found with every single website hosting plan which we provide and it's switched on by default for every domain or subdomain that you add through your Hepsia Control Panel. In the event that it interferes with any of your apps or you'd like to disable it for whatever reason, you'll be able to accomplish that through the ModSecurity section of Hepsia with only a mouse click. You can also activate a passive mode, so the firewall will detect potential attacks and keep a log, but shall not take any action. You'll be able to view detailed logs in the exact same section, including the IP where the attack came from, what precisely the attacker aimed to do and at what time, what ModSecurity did, etc. For optimum safety of our customers we use a group of commercial firewall rules combined with custom ones which are included by our system admins.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting plans and if you decide to host your websites with us, there won't be anything special you'll have to do as the firewall is switched on by default for all domains and subdomains that you include via your hosting Control Panel. If needed, you could disable ModSecurity for a particular Internet site or enable the so-called detection mode in which case the firewall will still work and record information, but will not do anything to stop possible attacks against your websites. Thorough logs shall be readily available within your CP and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks came from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom made ones that our admins often include to respond to newly identified threats in a timely manner.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting CP, so your web programs shall be secured from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you can disable it with a click of your mouse through the corresponding section of Hepsia. You may also set it to function in detection mode, so it will keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found inside the exact same section and provide information regarding the nature of the attack, what IP address it originated from and what ModSecurity rule was initiated to stop it. For best security, we use not simply commercial rules from a firm working in the field of web security, but also custom ones that our administrators add personally in order to react to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers Hosting

All of our dedicated servers that are set up with the Hepsia hosting CP feature ModSecurity, so any application that you upload or install shall be properly secured from the very beginning and you'll not have to bother about common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall discover in the logs can allow you to to secure your sites better - the IP address an attack came from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this info, you can see if a site needs an update, if you need to block IPs from accessing your server, and so on. On top of the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too every time they find a new threat that's not yet included in the commercial bundle.