ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's used to stop attacks toward script-driven Internet sites by using security rules that contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even websites which aren't updated often. As an example, a number of unsuccessful login attempts to a script admin area or attempts to execute a certain file with the intention to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the minute it identifies them. The firewall is quite efficient since it monitors the whole HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally maintains an incredibly thorough log of all attack attempts that contains more info than typical Apache logs, so you could later analyze the data and take further measures to boost the security of your sites if needed.

ModSecurity in Cloud Web Hosting

ModSecurity is available on all cloud web hosting web servers, so when you opt to host your sites with our business, they'll be resistant to a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you'll need to do on your end. You shall be able to stop ModSecurity for any Internet site if needed, or to enable a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You shall be able to view specific logs from your Hepsia CP including the IP address where the attack came from, what the attacker planned to do and how ModSecurity dealt with the threat. Since we take the safety of our customers' sites seriously, we use a set of commercial rules which we get from one of the best companies which maintain such rules. Our admins also include custom rules to make sure that your sites will be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

Any web program you set up in your new semi-dedicated server account shall be protected by ModSecurity because the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain which you include or create through your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section inside Hepsia where not simply can you activate or deactivate it fully, but you can also enable a passive mode, so the firewall won't block anything, but it'll still maintain a record of possible attacks. This requires simply a mouse click and you will be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, and so forth. The firewall uses two groups of rules on our servers - a commercial one that we get from a third-party web security provider and a custom one that our admins update personally in order to respond to newly discovered risks as soon as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting Control Panel, so your web programs shall be protected from the second your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if needed, you'll be able to disable it with a mouse click via the corresponding section of Hepsia. You may also set it to function in detection mode, so it will maintain an extensive log of any potential attacks without taking any action to prevent them. The logs are available inside the exact same section and provide information about the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not simply commercial rules from a company operating in the field of web security, but also custom ones our administrators include manually so as to respond to new risks that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers which are integrated with our Hepsia CP and you won't need to do anything specific on your end to use it as it's switched on by default every time you add a new domain or subdomain on your web server. In the event that it disrupts any of your apps, you will be able to stop it through the respective area of Hepsia, or you could leave it in passive mode, so it shall recognize attacks and will still keep a log for them, but shall not block them. You can examine the logs later to find out what you can do to enhance the safety of your Internet sites since you'll find details such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity responded, and so on. The rules we use are commercial, therefore they are frequently updated by a security provider, but to be on the safe side, our staff also add custom rules every now and then in order to respond to any new threats they have discovered.