ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's used to stop attacks toward script-driven websites through the use of security rules that contain particular expressions. This way, the firewall can stop hacking and spamming attempts and shield even Internet sites that aren't updated often. As an example, several failed login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script will trigger specific rules, so ModSecurity will stop these activities the minute it identifies them. The firewall is incredibly efficient because it monitors the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any damage is done. It also keeps an incredibly thorough log of all attack attempts that features more info than conventional Apache logs, so you could later analyze the data and take additional measures to improve the security of your Internet sites if needed.

ModSecurity in Shared Web Hosting

ModSecurity is available on all shared web hosting machines, so if you decide to host your websites with our company, they will be shielded from a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you'll have to do on your end. You'll be able to stop ModSecurity for any site if required, or to enable a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs using your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the safety of our customers' Internet sites seriously, we employ a selection of commercial rules that we take from one of the best firms that maintain this sort of rules. Our admins also include custom rules to make certain that your sites will be protected against as many risks as possible.

ModSecurity in Semi-dedicated Servers

Any web app which you install within your new semi-dedicated server account will be protected by ModSecurity as the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain that you add or create through your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated section inside Hepsia where not only could you activate or deactivate it completely, but you can also switch on a passive mode, so the firewall will not stop anything, but it will still maintain a record of potential attacks. This requires just a mouse click and you'll be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall employs 2 sets of rules on our servers - a commercial one which we get from a third-party web security firm and a custom one that our administrators update manually as to respond to recently discovered threats immediately.

ModSecurity in VPS Servers

All VPS servers which are provided with the Hepsia CP feature ModSecurity. The firewall is set up and turned on by default for all domains that are hosted on the web server, so there shall not be anything special that you shall have to do to protect your websites. It will take you a mouse click to stop ModSecurity if needed or to activate its passive mode so that it records what goes on without taking any measures to stop intrusions. You'll be able to view the logs created in active or passive mode from the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall employed to deal with it, and so on. We employ a mix of commercial and custom rules in order to make certain that ModSecurity shall stop as many risks as possible, hence improving the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers which are integrated with our Hepsia Control Panel and you won't need to do anything specific on your end to use it as it is turned on by default whenever you add a new domain or subdomain on your server. In case it disrupts some of your programs, you will be able to stop it through the respective part of Hepsia, or you may leave it working in passive mode, so it shall detect attacks and shall still maintain a log for them, but shall not stop them. You can analyze the logs later to determine what you can do to boost the safety of your Internet sites as you'll find details such as where an intrusion attempt came from, what website was attacked and based on what rule ModSecurity reacted, etc. The rules that we use are commercial, thus they are constantly updated by a security company, but to be on the safe side, our admins also add custom rules occasionally in order to react to any new threats they have found.