ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to stop attacks against script-driven Internet sites through the use of security rules which contain particular expressions. That way, the firewall can block hacking and spamming attempts and protect even Internet sites that are not updated often. For example, several failed login attempts to a script administrator area or attempts to execute a specific file with the objective to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the minute it detects them. The firewall is incredibly efficient since it tracks the whole HTTP traffic to a website in real time without slowing it down, so it can easily prevent an attack before any harm is done. It additionally maintains an incredibly detailed log of all attack attempts that includes more information than typical Apache logs, so you could later examine the data and take extra measures to enhance the security of your websites if required.

ModSecurity in Website Hosting

ModSecurity comes by default with all website hosting plans which we provide and it'll be activated automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and disable it with only a click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to stop them. The log for each of your websites shall feature comprehensive info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules we use are constantly updated and include both commercial ones that we get from a third-party security business and custom ones that our system administrators include in the event that they detect a new type of attacks. This way, the Internet sites you host here shall be much more secure with no action needed on your end.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer come with ModSecurity and since the firewall is enabled by default, any site that you create under a domain or a subdomain shall be secured immediately. An independent section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll permit you to stop and start the firewall for any site or activate a detection mode. With the last option, ModSecurity will not take any action, but it shall still recognize possible attacks and shall keep all information within a log as if it were fully active. The logs can be found in the same section of the Control Panel and they include info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules we use on our machines are a mix between commercial ones from a security firm and custom ones developed by our system administrators. As a result, we offer higher security for your web apps as we can defend them from attacks even before security businesses release updates for completely new threats.

ModSecurity in VPS Servers

All VPS servers that are offered with the Hepsia CP include ModSecurity. The firewall is set up and turned on by default for all domains that are hosted on the web server, so there shall not be anything special which you will have to do to protect your Internet sites. It shall take you only a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what happens without taking any actions to stop intrusions. You'll be able to view the logs created in passive or active mode from the corresponding section of Hepsia and discover more about the form of the attack, where it came from, what rule the firewall used to take care of it, etc. We use a mixture of commercial and custom rules so as to ensure that ModSecurity will prevent as many risks as possible, consequently boosting the security of your web programs as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers which are integrated with our Hepsia CP and you won't have to do anything specific on your end to employ it since it is switched on by default each time you add a new domain or subdomain on your server. If it interferes with any of your apps, you will be able to stop it through the respective part of Hepsia, or you can leave it operating in passive mode, so it shall identify attacks and shall still keep a log for them, but shall not stop them. You may examine the logs later to determine what you can do to boost the protection of your Internet sites since you shall find information such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules we use are commercial, hence they're regularly updated by a security provider, but to be on the safe side, our administrators also add custom rules occasionally as to react to any new threats they have discovered.