ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's employed to prevent attacks against script-driven websites through the use of security rules which contain certain expressions. That way, the firewall can stop hacking and spamming attempts and preserve even websites which are not updated often. As an example, several failed login attempts to a script administrator area or attempts to execute a certain file with the purpose to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the minute it detects them. The firewall is quite efficient since it monitors the entire HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It also keeps a very thorough log of all attack attempts that contains more information than conventional Apache logs, so you could later analyze the data and take additional measures to increase the security of your sites if required.

ModSecurity in Shared Hosting

ModSecurity is supplied with all shared hosting web servers, so when you decide to host your Internet sites with our company, they will be resistant to an array of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you shall need to do on your end. You will be able to stop ModSecurity for any website if required, or to enable a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You'll be able to view specific logs through your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the safety of our customers' websites seriously, we use a group of commercial rules which we take from one of the best companies which maintain this type of rules. Our admins also add custom rules to make sure that your websites will be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Servers

Any web app you set up within your new semi-dedicated server account will be protected by ModSecurity since the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain which you add or create using your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated area inside Hepsia where not only could you activate or deactivate it entirely, but you could also activate a passive mode, so the firewall shall not block anything, but it'll still maintain a record of possible attacks. This takes only a click and you will be able to view the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, and so on. The firewall employs 2 sets of rules on our web servers - a commercial one that we get from a third-party web security firm and a custom one that our administrators update personally as to respond to recently discovered threats immediately.

ModSecurity in VPS Servers

Safety is extremely important to us, so we set up ModSecurity on all VPS servers that are made available with the Hepsia CP by default. The firewall can be managed through a dedicated section inside Hepsia and is activated automatically when you add a new domain or generate a subdomain, so you will not have to do anything personally. You shall also be able to deactivate it or activate the so-called detection mode, so it shall maintain a log of potential attacks which you can later analyze, but will not stop them. The logs in both passive and active modes offer info regarding the type of the attack and how it was stopped, what IP it came from and other important information which might help you to tighten the security of your websites by updating them or blocking IPs, as an example. Beyond the commercial rules we get for ModSecurity from a third-party security enterprise, we also implement our own rules as occasionally we discover specific attacks which aren't yet present in the commercial package. This way, we could increase the protection of your Virtual private server immediately instead of awaiting an official update.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you won't have to do anything specific on your end to employ it as it is turned on by default each time you include a new domain or subdomain on your server. If it disrupts some of your applications, you'll be able to stop it via the respective area of Hepsia, or you could leave it operating in passive mode, so it shall identify attacks and will still keep a log for them, but won't block them. You can examine the logs later to find out what you can do to enhance the safety of your Internet sites since you will find info such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, and so forth. The rules which we use are commercial, hence they're frequently updated by a security company, but to be on the safe side, our admins also include custom rules from time to time in order to respond to any new threats they have discovered.