ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's employed to prevent attacks towards script-driven websites through the use of security rules which contain certain expressions. This way, the firewall can stop hacking and spamming attempts and preserve even sites that aren't updated on a regular basis. For example, numerous failed login attempts to a script administrative area or attempts to execute a particular file with the intention to get access to the script shall trigger certain rules, so ModSecurity will block out these activities the instant it detects them. The firewall is very efficient as it tracks the entire HTTP traffic to a website in real time without slowing it down, so it could stop an attack before any harm is done. It furthermore keeps a very thorough log of all attack attempts that includes more information than conventional Apache logs, so you could later examine the data and take extra measures to enhance the security of your sites if needed.

ModSecurity in Cloud Website Hosting

ModSecurity can be found with every cloud website hosting solution that we offer and it's switched on by default for any domain or subdomain that you include via your Hepsia CP. If it interferes with any of your programs or you would like to disable it for some reason, you'll be able to do that through the ModSecurity section of Hepsia with just a mouse click. You could also activate a passive mode, so the firewall will detect potential attacks and maintain a log, but won't take any action. You could see comprehensive logs in the exact same section, including the IP address where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, etc. For max security of our clients we use a collection of commercial firewall rules mixed with custom ones which are added by our system admins.

ModSecurity in Semi-dedicated Servers

Any web app you set up inside your new semi-dedicated server account shall be protected by ModSecurity since the firewall comes with all our hosting packages and is switched on by default for any domain and subdomain which you add or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it fully, but you can also enable a passive mode, so the firewall shall not stop anything, but it will still keep a record of potential attacks. This requires simply a click and you shall be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, and so forth. The firewall employs 2 groups of rules on our machines - a commercial one that we get from a third-party web security company and a custom one that our admins update personally in order to respond to recently discovered threats immediately.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting Control Panel, so your web applications shall be secured from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you can disable it with a click from the corresponding section of Hepsia. You can also set it to work in detection mode, so it shall keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found within the same section and offer info about the nature of the attack, what IP it originated from and what ModSecurity rule was activated to stop it. For best security, we use not just commercial rules from a company operating in the field of web security, but also custom ones that our admins include personally in order to respond to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

All our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any application you upload or set up will be properly secured from the very beginning and you will not have to bother about common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall discover in the logs can help you to secure your websites better - the IP an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, etc. With this data, you could see if an Internet site needs an update, if you need to block IPs from accessing your hosting server, etcetera. In addition to the third-party commercial security rules for ModSecurity which we use, our administrators add custom ones as well if they come across a new threat that is not yet a part of the commercial bundle.