ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's used to prevent attacks against script-driven sites by employing security rules which contain specific expressions. That way, the firewall can prevent hacking and spamming attempts and shield even Internet sites that are not updated on a regular basis. For example, numerous failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script shall trigger particular rules, so ModSecurity shall block these activities the instant it identifies them. The firewall is quite efficient as it screens the entire HTTP traffic to a website in real time without slowing it down, so it could prevent an attack before any harm is done. It additionally maintains an exceptionally thorough log of all attack attempts which contains more info than conventional Apache logs, so you can later examine the data and take additional measures to increase the security of your sites if necessary.

ModSecurity in Cloud Hosting

ModSecurity is provided with all cloud hosting machines, so if you opt to host your sites with our organization, they will be resistant to a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you will need to do on your end. You shall be able to stop ModSecurity for any website if necessary, or to activate a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You will be able to view comprehensive logs from your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity handled the threat. As we take the safety of our customers' sites seriously, we use a collection of commercial rules that we take from one of the leading companies which maintain this sort of rules. Our administrators also add custom rules to ensure that your sites will be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Servers

Any web application you set up inside your new semi-dedicated server account will be protected by ModSecurity since the firewall comes with all our hosting plans and is activated by default for any domain and subdomain which you include or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section inside Hepsia where not only could you activate or deactivate it fully, but you can also switch on a passive mode, so the firewall won't block anything, but it will still maintain an archive of potential attacks. This requires only a click and you'll be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall uses two groups of rules on our machines - a commercial one which we get from a third-party web security firm and a custom one which our admins update manually as to respond to newly discovered risks as quickly as possible.

ModSecurity in VPS Servers

Security is very important to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia Control Panel as a standard. The firewall can be managed through a dedicated section inside Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you won't have to do anything personally. You shall also be able to deactivate it or activate the so-called detection mode, so it will keep a log of possible attacks that you can later examine, but shall not stop them. The logs in both passive and active modes contain details about the form of the attack and how it was eliminated, what IP address it originated from and other valuable info which may help you to tighten the security of your sites by updating them or blocking IPs, as an example. Besides the commercial rules we get for ModSecurity from a third-party security enterprise, we also employ our own rules because once in a while we find specific attacks that aren't yet present in the commercial package. That way, we can easily enhance the protection of your VPS right away rather than waiting for an official update.

ModSecurity in Dedicated Servers

All of our dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any application that you upload or set up shall be protected from the very beginning and you won't need to bother about common attacks or vulnerabilities. An individual section in Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to stop them. What you shall see in the logs can easily enable you to to secure your Internet sites better - the IP an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, etc. With this data, you'll be able to see whether a site needs an update, if you should block IPs from accessing your server, and so on. Besides the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too whenever they find a new threat which is not yet in the commercial bundle.