ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to stop attacks towards script-driven websites by using security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and preserve even Internet sites that are not updated frequently. For example, multiple failed login attempts to a script admin area or attempts to execute a specific file with the objective to get access to the script will trigger certain rules, so ModSecurity shall block out these activities the minute it discovers them. The firewall is extremely efficient because it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It additionally maintains a very thorough log of all attack attempts which includes more info than conventional Apache logs, so you could later examine the data and take additional measures to enhance the security of your Internet sites if necessary.

ModSecurity in Shared Website Hosting

ModSecurity is available with each shared website hosting package which we offer and it is turned on by default for every domain or subdomain which you add via your Hepsia Control Panel. In case it disrupts any of your programs or you would like to disable it for whatever reason, you shall be able to achieve that through the ModSecurity section of Hepsia with just a mouse click. You could also activate a passive mode, so the firewall will discover possible attacks and maintain a log, but won't take any action. You'll be able to view extensive logs in the very same section, including the IP where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, and so forth. For maximum safety of our clients we use a group of commercial firewall rules combined with custom ones that are added by our system admins.

ModSecurity in Semi-dedicated Hosting

We have incorporated ModSecurity as a standard inside all semi-dedicated hosting products, so your web applications shall be protected the instant you install them under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will allow you to activate or disable the firewall for any site with a click. You'll also be able to activate a passive detection mode through which ModSecurity shall keep a log of potential attacks without really stopping them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack initiated, where it originated from, etcetera. The list of rules which we employ is constantly updated as to match any new risks which might appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones that our admins include if they discover a threat that is not present inside the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are offered with the Hepsia hosting CP, so your web programs will be protected from the second your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you can disable it with a mouse click from the corresponding section of Hepsia. You can also set it to work in detection mode, so it'll keep a detailed log of any potential attacks without taking any action to prevent them. The logs are available within the very same section and include info about the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For best security, we employ not simply commercial rules from a firm working in the field of web security, but also custom ones which our admins add manually in order to react to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any program which you upload or install will be properly secured from the very beginning and you'll not need to worry about common attacks or vulnerabilities. An individual section in Hepsia will allow you to start or stop the firewall for every domain or subdomain, or activate a detection mode so that it records information about intrusions, but doesn't take actions to stop them. What you'll see in the logs shall allow you to to secure your sites better - the IP an attack came from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this info, you could see whether an Internet site needs an update, whether you need to block IPs from accessing your hosting server, and so forth. Aside from the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too when they find a new threat that's not yet a part of the commercial bundle.