ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to stop attacks toward script-driven Internet sites through the use of security rules which contain specific expressions. This way, the firewall can stop hacking and spamming attempts and shield even websites which are not updated often. As an example, a number of failed login attempts to a script administrator area or attempts to execute a particular file with the objective to get access to the script shall trigger certain rules, so ModSecurity shall block these activities the moment it discovers them. The firewall is quite efficient because it monitors the entire HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any damage is done. It additionally maintains an incredibly comprehensive log of all attack attempts which includes more information than standard Apache logs, so you could later examine the data and take extra measures to improve the security of your websites if required.

ModSecurity in Shared Web Hosting

We offer ModSecurity with all shared web hosting solutions, so your web applications will be shielded from destructive attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you will be able to stop it using the respective part of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you shall find in Hepsia are very detailed and include info about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etc. We employ a group of commercial rules that are frequently updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you opt to host your sites with us, there shall not be anything special you'll have to do given that the firewall is activated by default for all domains and subdomains which you include via your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a particular site or switch on the so-called detection mode in which case the firewall shall still operate and record info, but shall not do anything to prevent possible attacks against your websites. Detailed logs shall be readily available inside your Control Panel and you shall be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so on. We employ 2 sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and custom made ones which our administrators sometimes add to respond to newly found risks in a timely manner.

ModSecurity in VPS Servers

All VPS servers which are offered with the Hepsia CP include ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the web server, so there shall not be anything special that you'll have to do to protect your sites. It shall take you just a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what happens without taking any steps to stop intrusions. You'll be able to view the logs created in passive or active mode via the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall used to tackle it, and so forth. We use a combination of commercial and custom rules in order to ensure that ModSecurity shall block as many risks as possible, consequently improving the protection of your web apps as much as possible.

ModSecurity in Dedicated Servers

All our dedicated servers which are installed with the Hepsia hosting CP include ModSecurity, so any app that you upload or set up will be properly secured from the very beginning and you won't have to bother about common attacks or vulnerabilities. An individual section within Hepsia will enable you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall find in the logs can help you to secure your sites better - the IP address an attack came from, what site was attacked and exactly how, what ModSecurity rule was triggered, etcetera. With this data, you can see whether a website needs an update, if you should block IPs from accessing your hosting server, and so forth. Aside from the third-party commercial security rules for ModSecurity we use, our administrators add custom ones too every time they come across a new threat that's not yet a part of the commercial bundle.