ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's used to stop attacks against script-driven websites through the use of security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and preserve even websites that are not updated often. As an example, numerous failed login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script shall trigger certain rules, so ModSecurity shall block these activities the moment it discovers them. The firewall is incredibly efficient since it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any damage is done. It furthermore keeps an incredibly thorough log of all attack attempts which features more information than conventional Apache logs, so you can later check out the data and take extra measures to boost the security of your Internet sites if needed.

ModSecurity in Cloud Web Hosting

ModSecurity comes by default with all cloud web hosting packages that we offer and it will be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and disable it with just a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for any of your sites shall include comprehensive information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are regularly updated and include both commercial ones that we get from a third-party security business and custom ones that our system administrators add in the event that they detect a new kind of attacks. In this way, the websites you host here shall be a lot more protected with no action needed on your end.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity by default within all semi-dedicated server products, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will allow you to enable or turn off the firewall for any site with a mouse click. You shall also be able to turn on a passive detection mode through which ModSecurity will maintain a log of potential attacks without really stopping them. The detailed logs include the nature of the attack and what ModSecurity response that attack triggered, where it originated from, etcetera. The list of rules we employ is frequently updated in order to match any new risks which may appear on the Internet and it consists of both commercial rules that we get from a security corporation and custom-written ones that our administrators include if they find a threat that is not present inside the commercial list yet.

ModSecurity in VPS Servers

All VPS servers which are offered with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the server, so there won't be anything special that you'll have to do to protect your Internet sites. It'll take you simply a click to stop ModSecurity if necessary or to switch on its passive mode so that it records what occurs without taking any actions to prevent intrusions. You'll be able to look at the logs created in passive or active mode through the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall used to tackle it, etc. We employ a mixture of commercial and custom rules so as to make sure that ModSecurity will block as many risks as possible, hence increasing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers which are set up with our Hepsia CP and you will not have to do anything specific on your end to use it as it is switched on by default each time you include a new domain or subdomain on your web server. If it interferes with some of your apps, you will be able to stop it through the respective section of Hepsia, or you may leave it operating in passive mode, so it will recognize attacks and shall still keep a log for them, but will not prevent them. You may look at the logs later to find out what you can do to enhance the security of your Internet sites as you shall find information such as where an intrusion attempt came from, what site was attacked and based on what rule ModSecurity reacted, and so forth. The rules which we employ are commercial, hence they are constantly updated by a security provider, but to be on the safe side, our admins also include custom rules occasionally in order to react to any new threats they have discovered.