ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to stop attacks towards script-driven sites by employing security rules which contain particular expressions. This way, the firewall can stop hacking and spamming attempts and shield even websites which aren't updated regularly. For instance, several unsuccessful login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script shall trigger certain rules, so ModSecurity will block these activities the second it identifies them. The firewall is quite efficient because it screens the whole HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any harm is done. It furthermore maintains a very thorough log of all attack attempts which contains more information than standard Apache logs, so you could later examine the data and take further measures to boost the security of your websites if required.

ModSecurity in Cloud Web Hosting

ModSecurity is available with each and every cloud web hosting plan which we offer and it is switched on by default for every domain or subdomain which you include via your Hepsia Control Panel. If it disrupts any of your apps or you'd like to disable it for whatever reason, you will be able to do this through the ModSecurity area of Hepsia with merely a mouse click. You could also activate a passive mode, so the firewall will identify possible attacks and keep a log, but shall not take any action. You could see extensive logs in the very same section, including the IP where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, etc. For maximum protection of our customers we use a collection of commercial firewall rules combined with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting plans and if you decide to host your sites with our company, there shall not be anything special you'll have to do since the firewall is switched on by default for all domains and subdomains which you add through your hosting CP. If required, you could disable ModSecurity for a particular website or turn on the so-called detection mode in which case the firewall will still function and record data, but will not do anything to prevent potential attacks on your Internet sites. Comprehensive logs shall be readily available within your Control Panel and you shall be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so forth. We use 2 sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom made ones that our admins often add to respond to newly identified risks in a timely manner.

ModSecurity in VPS Hosting

ModSecurity is provided with all Hepsia-based virtual private servers we offer and it shall be turned on automatically for any new domain or subdomain that you include on the hosting server. In this way, any web application that you install shall be secured from the very beginning without doing anything personally on your end. The firewall can be handled from the section of the CP that bears the same name. This is the area in whichyou could turn off ModSecurity or activate its passive mode, so it shall not take any action towards threats, but shall still keep a detailed log. The recorded info is available within the same area as well and you will be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we employ on our servers are a blend between commercial ones we get from a security company and custom ones which are included by our administrators to optimize the security of any web apps hosted on our end.

ModSecurity in Dedicated Web Hosting

All our dedicated servers that are set up with the Hepsia hosting CP come with ModSecurity, so any application you upload or install shall be properly secured from the very beginning and you will not have to bother about common attacks or vulnerabilities. A separate section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you shall see in the logs can easily enable you to to secure your sites better - the IP address an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, etc. With this info, you could see if an Internet site needs an update, if you ought to block IPs from accessing your web server, etcetera. On top of the third-party commercial security rules for ModSecurity which we use, our admins add custom ones as well every time they find a new threat which is not yet in the commercial bundle.