ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to stop attacks toward script-driven sites by using security rules that contain particular expressions. This way, the firewall can block hacking and spamming attempts and shield even websites which aren't updated on a regular basis. For instance, numerous unsuccessful login attempts to a script administrative area or attempts to execute a certain file with the objective to get access to the script will trigger certain rules, so ModSecurity shall stop these activities the second it detects them. The firewall is extremely efficient since it tracks the entire HTTP traffic to a website in real time without slowing it down, so it can prevent an attack before any damage is done. It also keeps an exceptionally thorough log of all attack attempts which features more info than typical Apache logs, so you can later analyze the data and take further measures to improve the security of your sites if necessary.

ModSecurity in Cloud Hosting

We provide ModSecurity with all cloud hosting plans, so your Internet apps shall be shielded from destructive attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you will be able to stop it through the respective area of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you'll find within Hepsia are quite detailed and include info about the nature of any attack, when it took place and from what IP address, the firewall rule which was triggered, etc. We use a group of commercial rules which are often updated, but sometimes our admins include custom rules as well so as to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

We have included ModSecurity by default within all semi-dedicated server packages, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts shall allow you to switch on or turn off the firewall for any Internet site with a mouse click. You will also be able to turn on a passive detection mode in which ModSecurity shall keep a log of possible attacks without actually stopping them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack initiated, where it came from, and so on. The list of rules we use is constantly updated as to match any new risks that might appear on the Internet and it includes both commercial rules that we get from a security business and custom-written ones that our administrators add if they discover a threat which is not present inside the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting Control Panel, so your web applications shall be secured from the moment your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you could deactivate it with a mouse click via the corresponding section of Hepsia. You can also set it to work in detection mode, so it'll keep an extensive log of any potential attacks without taking any action to prevent them. The logs are available inside the very same section and offer information regarding the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For optimum security, we use not just commercial rules from a company operating in the field of web security, but also custom ones that our administrators add manually in order to respond to new risks that are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers that are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or install shall be properly secured from the very beginning and you'll not need to concern yourself with common attacks or vulnerabilities. An individual section in Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you'll see in the logs can easily enable you to to secure your Internet sites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this info, you could see whether a website needs an update, whether you need to block IPs from accessing your hosting server, etcetera. In addition to the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well every time they find a new threat that is not yet a part of the commercial bundle.