ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is used to stop attacks against script-driven sites by using security rules that contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even websites which aren't updated frequently. For instance, numerous unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script will trigger particular rules, so ModSecurity will block these activities the instant it discovers them. The firewall is extremely efficient since it screens the whole HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It furthermore maintains an incredibly detailed log of all attack attempts which contains more info than typical Apache logs, so you can later check out the data and take additional measures to enhance the security of your Internet sites if needed.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting solutions, so your Internet apps shall be shielded from harmful attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you'll be able to stop it using the respective area of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you shall discover inside Hepsia are extremely detailed and include information about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, etcetera. We employ a range of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server plans and if you choose to host your Internet sites with our company, there will not be anything special you'll have to do given that the firewall is activated by default for all domains and subdomains you include via your hosting CP. If required, you could disable ModSecurity for a certain website or turn on the so-called detection mode in which case the firewall shall still function and record info, but will not do anything to stop potential attacks against your sites. Comprehensive logs shall be accessible within your Control Panel and you will be able to see what type of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, etcetera. We employ 2 types of rules on our servers - commercial ones from a business which operates in the field of web security, and customized ones which our admins occasionally include to respond to newly discovered risks promptly.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting Control Panel, so your web applications will be secured from the second your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you'll be able to deactivate it with a click of your mouse from the corresponding section of Hepsia. You can also set it to function in detection mode, so it will maintain a detailed log of any possible attacks without taking any action to prevent them. The logs are available inside the same section and offer info about the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For optimum security, we employ not simply commercial rules from a firm operating in the field of web security, but also custom ones which our administrators include personally so as to respond to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers that are set up with the Hepsia hosting CP come with ModSecurity, so any application which you upload or install shall be properly secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information about intrusions, but doesn't take actions to prevent them. What you will discover in the logs can easily enable you to to secure your sites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this info, you could see if a website needs an update, whether you need to block IPs from accessing your hosting server, etcetera. In addition to the third-party commercial security rules for ModSecurity which we use, our administrators add custom ones too every time they discover a new threat which is not yet included in the commercial bundle.