ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's used to prevent attacks against script-driven Internet sites by using security rules that contain certain expressions. That way, the firewall can stop hacking and spamming attempts and shield even Internet sites which aren't updated on a regular basis. For instance, a number of unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script will trigger particular rules, so ModSecurity will block out these activities the moment it detects them. The firewall is incredibly efficient because it screens the whole HTTP traffic to a site in real time without slowing it down, so it will be able to stop an attack before any harm is done. It additionally keeps an exceptionally thorough log of all attack attempts that includes more info than standard Apache logs, so you could later analyze the data and take additional measures to enhance the security of your Internet sites if required.

ModSecurity in Shared Web Hosting

ModSecurity comes standard with all shared web hosting plans that we supply and it will be switched on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you can switch on and disable it with only a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your sites will contain elaborate information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and include both commercial ones which we get from a third-party security firm and custom ones that our system admins include in case that they detect a new sort of attacks. That way, the Internet sites that you host here shall be much more protected with no action needed on your end.

ModSecurity in Semi-dedicated Servers

We've incorporated ModSecurity by default inside all semi-dedicated server products, so your web applications will be protected whenever you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts shall permit you to activate or disable the firewall for any website with a click. You shall also be able to activate a passive detection mode in which ModSecurity will maintain a log of possible attacks without actually stopping them. The detailed logs contain the nature of the attack and what ModSecurity response this attack activated, where it came from, etc. The list of rules we employ is frequently updated in order to match any new risks which could appear on the Internet and it comes with both commercial rules that we get from a security corporation and custom-written ones which our admins add in the event that they find a threat that is not present inside the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers we offer and it will be activated automatically for any new domain or subdomain you add on the hosting server. That way, any web app which you install will be protected right from the start without doing anything manually on your end. The firewall can be handled from the section of the CP that has the same name. This is the area whereyou'll be able to turn off ModSecurity or activate its passive mode, so it won't take any action toward threats, but will still keep a thorough log. The recorded information is available inside the same area as well and you will be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we employ on our servers are a combination between commercial ones we obtain from a security firm and custom ones which are included by our administrators to maximize the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers which are integrated with our Hepsia CP and you won't have to do anything specific on your end to use it since it is enabled by default whenever you add a new domain or subdomain on your server. If it disrupts any of your programs, you shall be able to stop it through the respective area of Hepsia, or you could leave it operating in passive mode, so it shall detect attacks and shall still maintain a log for them, but shall not prevent them. You may look at the logs later to determine what you can do to boost the security of your websites as you will find details such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity reacted, and so on. The rules we use are commercial, thus they're frequently updated by a security company, but to be on the safe side, our admins also add custom rules once in a while in order to respond to any new threats they have identified.