ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to stop attacks toward script-driven Internet sites by using security rules which contain specific expressions. This way, the firewall can stop hacking and spamming attempts and shield even websites that aren't updated on a regular basis. For instance, numerous failed login attempts to a script administrative area or attempts to execute a particular file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the second it detects them. The firewall is incredibly efficient as it screens the entire HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any damage is done. It also keeps a very thorough log of all attack attempts that contains more information than traditional Apache logs, so you can later analyze the data and take additional measures to improve the security of your Internet sites if needed.

ModSecurity in Web Hosting

We offer ModSecurity with all web hosting packages, so your web applications will be resistant to harmful attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you shall be able to stop it through the respective area of your Hepsia CP. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you shall discover within Hepsia are very detailed and feature data about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so on. We employ a group of commercial rules which are frequently updated, but sometimes our admins include custom rules as well in order to efficiently protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web application which you install inside your new semi-dedicated hosting account will be protected by ModSecurity since the firewall comes with all our hosting plans and is activated by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated area inside Hepsia where not only can you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall won't block anything, but it shall still keep a record of potential attacks. This normally requires just a mouse click and you shall be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall employs two groups of rules on our machines - a commercial one that we get from a third-party web security company and a custom one that our admins update manually as to respond to recently discovered risks as fast as possible.

ModSecurity in VPS

ModSecurity is provided with all Hepsia-based virtual private servers we offer and it shall be turned on automatically for any new domain or subdomain which you add on the server. This way, any web application you install will be secured right from the start without doing anything by hand on your end. The firewall may be managed from the section of the Control Panel that has the same name. This is the location whereyou could switch off ModSecurity or enable its passive mode, so it will not take any action against threats, but will still keep a detailed log. The recorded data is available inside the same area as well and you will be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we employ on our servers are a blend between commercial ones that we obtain from a security company and custom ones which are added by our administrators to maximize the security of any web applications hosted on our end.

ModSecurity in Dedicated Hosting

All our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any application which you upload or set up will be secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. An individual section inside Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you shall discover in the logs shall help you to secure your websites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this information, you can see if a site needs an update, if you ought to block IPs from accessing your hosting server, etcetera. On top of the third-party commercial security rules for ModSecurity we use, our admins add custom ones too if they come across a new threat that's not yet in the commercial bundle.