ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's employed to prevent attacks towards script-driven websites through the use of security rules which contain particular expressions. This way, the firewall can stop hacking and spamming attempts and protect even Internet sites that are not updated on a regular basis. For example, multiple unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script shall trigger certain rules, so ModSecurity will block these activities the minute it detects them. The firewall is quite efficient as it screens the whole HTTP traffic to a site in real time without slowing it down, so it can prevent an attack before any damage is done. It additionally keeps an incredibly thorough log of all attack attempts which includes more info than traditional Apache logs, so you could later check out the data and take extra measures to increase the security of your websites if necessary.

ModSecurity in Web Hosting

ModSecurity can be found with each and every web hosting package which we provide and it's turned on by default for every domain or subdomain that you include through your Hepsia Control Panel. If it interferes with any of your programs or you would like to disable it for some reason, you will be able to do this through the ModSecurity area of Hepsia with only a mouse click. You can also activate a passive mode, so the firewall will detect possible attacks and maintain a log, but shall not take any action. You can see detailed logs in the exact same section, including the IP where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, and so on. For max security of our customers we use a collection of commercial firewall rules mixed with custom ones which are added by our system admins.

ModSecurity in Semi-dedicated Hosting

Any web app that you install inside your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is included with all our hosting plans and is activated by default for any domain and subdomain which you add or create using your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated area within Hepsia where not only can you activate or deactivate it entirely, but you could also enable a passive mode, so the firewall will not stop anything, but it'll still maintain an archive of potential attacks. This takes only a mouse click and you'll be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was addressed, etc. The firewall employs two sets of rules on our machines - a commercial one which we get from a third-party web security firm and a custom one that our administrators update personally as to respond to newly discovered threats at the earliest opportunity.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are offered with the Hepsia hosting CP, so your web apps shall be protected from the second your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you can deactivate it with a mouse click via the corresponding section of Hepsia. You may also set it to function in detection mode, so it will maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs are available inside the same section and provide info about the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For optimum security, we employ not just commercial rules from a firm operating in the field of web security, but also custom ones that our admins include personally so as to respond to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers Hosting

All of our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any application that you upload or set up will be secured from the very beginning and you will not have to worry about common attacks or vulnerabilities. An individual section within Hepsia will allow you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you will find in the logs shall allow you to to secure your Internet sites better - the IP an attack originated from, what site was attacked as well as how, what ModSecurity rule was triggered, and so forth. With this information, you could see whether a site needs an update, whether you need to block IPs from accessing your hosting server, etcetera. In addition to the third-party commercial security rules for ModSecurity we use, our administrators include custom ones as well every time they come across a new threat that is not yet included in the commercial bundle.