ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is employed to prevent attacks toward script-driven Internet sites by employing security rules which contain certain expressions. That way, the firewall can block hacking and spamming attempts and preserve even websites that aren't updated frequently. As an example, a number of failed login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script will trigger particular rules, so ModSecurity shall block out these activities the minute it identifies them. The firewall is quite efficient because it monitors the whole HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any harm is done. It also keeps an exceptionally detailed log of all attack attempts that contains more information than traditional Apache logs, so you can later examine the data and take extra measures to enhance the security of your sites if necessary.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting packages that we offer and it'll be turned on automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and disable it with simply a click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your Internet sites shall feature comprehensive info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are regularly updated and comprise of both commercial ones we get from a third-party security business and custom ones which our system administrators include in case that they detect a new sort of attacks. This way, the Internet sites that you host here will be far more protected without any action required on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions that we offer feature ModSecurity and since the firewall is switched on by default, any Internet site you set up under a domain or a subdomain shall be protected immediately. A separate section inside the Hepsia CP which comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to stop and start the firewall for any site or activate a detection mode. With the last option, ModSecurity shall not take any action, but it will still detect possible attacks and will keep all information in a log as if it were fully active. The logs could be found within the exact same section of the CP and they include information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules that we use on our web servers are a mix of commercial ones from a security firm and custom ones developed by our system admins. As a result, we provide greater security for your web apps as we can defend them from attacks before security businesses release updates for brand new threats.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers that are set up with the Hepsia hosting Control Panel, so your web programs will be protected from the second your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you can deactivate it with a click of your mouse through the corresponding section of Hepsia. You could also set it to work in detection mode, so it'll maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs are available in the very same section and offer details about the nature of the attack, what IP address it originated from and what ModSecurity rule was initiated to stop it. For best security, we employ not simply commercial rules from a firm working in the field of web security, but also custom ones that our admins add personally so as to react to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you'll not have to do anything specific on your end to employ it since it's activated by default each time you include a new domain or subdomain on your web server. In the event that it disrupts any of your programs, you will be able to stop it via the respective section of Hepsia, or you could leave it operating in passive mode, so it'll identify attacks and will still maintain a log for them, but will not prevent them. You could look at the logs later to determine what you can do to increase the safety of your websites as you shall find info such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity responded, and so on. The rules that we use are commercial, hence they are constantly updated by a security firm, but to be on the safe side, our staff also include custom rules occasionally in order to respond to any new threats they have discovered.