ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is employed to prevent attacks toward script-driven Internet sites through the use of security rules which contain particular expressions. That way, the firewall can block hacking and spamming attempts and protect even Internet sites that are not updated frequently. As an example, several unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the minute it detects them. The firewall is extremely efficient because it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It furthermore maintains a very thorough log of all attack attempts which contains more information than traditional Apache logs, so you can later analyze the data and take additional measures to improve the security of your websites if necessary.

ModSecurity in Web Hosting

ModSecurity is available with each web hosting solution that we provide and it's activated by default for any domain or subdomain which you add through your Hepsia CP. In case it disrupts any of your programs or you'd like to disable it for any reason, you'll be able to accomplish that through the ModSecurity area of Hepsia with just a mouse click. You could also use a passive mode, so the firewall will identify possible attacks and keep a log, but will not take any action. You could view comprehensive logs in the same section, including the IP where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, etcetera. For max protection of our clients we use a group of commercial firewall rules mixed with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server solutions and if you decide to host your Internet sites with our company, there won't be anything special you will have to do given that the firewall is turned on by default for all domains and subdomains that you add through your hosting CP. If required, you'll be able to disable ModSecurity for a particular site or switch on the so-called detection mode in which case the firewall will still work and record information, but won't do anything to prevent potential attacks against your Internet sites. Thorough logs shall be accessible within your Control Panel and you will be able to see what sort of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, etcetera. We employ two sorts of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones which our admins occasionally add to respond to newly discovered threats promptly.

ModSecurity in VPS Servers

All VPS servers which are offered with the Hepsia Control Panel come with ModSecurity. The firewall is installed and switched on by default for all domains which are hosted on the machine, so there will not be anything special which you will have to do to protect your websites. It will take you simply a click to stop ModSecurity if necessary or to activate its passive mode so that it records what occurs without taking any actions to stop intrusions. You shall be able to look at the logs produced in active or passive mode from the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall used to deal with it, etcetera. We use a mix of commercial and custom rules so as to ensure that ModSecurity shall prevent as many threats as possible, thus enhancing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers

If you decide to host your websites on a dedicated server with the Hepsia Control Panel, your web applications will be secured right away since ModSecurity is available with all Hepsia-based solutions. You shall be able to manage the firewall effortlessly and if necessary, you'll be able to turn it off or switch on its passive mode when it shall only keep a log of what's happening without taking any action to stop possible attacks. The logs which you'll find in the exact same section of the Control Panel are extremely detailed and contain information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, and so on. This information will permit you to take measures and boost the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our admins add every time they identify attacks that haven't yet been included within the commercial pack.