ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is employed to stop attacks toward script-driven websites by employing security rules which contain specific expressions. That way, the firewall can stop hacking and spamming attempts and shield even Internet sites which aren't updated often. For instance, multiple unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script shall trigger particular rules, so ModSecurity will stop these activities the second it detects them. The firewall is incredibly efficient because it screens the whole HTTP traffic to a website in real time without slowing it down, so it can easily stop an attack before any damage is done. It furthermore keeps a very comprehensive log of all attack attempts that contains more information than standard Apache logs, so you could later examine the data and take additional measures to improve the security of your websites if needed.

ModSecurity in Cloud Web Hosting

ModSecurity comes standard with all cloud web hosting solutions that we supply and it shall be switched on automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and disable it with just a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your sites will feature detailed information including the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are regularly updated and include both commercial ones we get from a third-party security business and custom ones which our system administrators include in case that they detect a new kind of attacks. That way, the websites which you host here shall be much more protected without any action expected on your end.

ModSecurity in Semi-dedicated Servers

Any web application you set up inside your new semi-dedicated server account shall be protected by ModSecurity because the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain which you include or create via your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated section within Hepsia where not only can you activate or deactivate it entirely, but you can also switch on a passive mode, so the firewall shall not stop anything, but it shall still keep a record of potential attacks. This takes just a mouse click and you will be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, and so on. The firewall employs two groups of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one that our admins update personally in order to respond to recently discovered threats immediately.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers that we offer and it shall be switched on automatically for any new domain or subdomain which you include on the web server. This way, any web app that you install will be secured right from the start without doing anything by hand on your end. The firewall could be managed through the section of the Control Panel that bears the same name. This is the area whereyou'll be able to switch off ModSecurity or enable its passive mode, so it shall not take any action against threats, but shall still maintain a detailed log. The recorded data is available within the same section as well and you will be able to see what IPs any attacks came from so that you can block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules which we employ on our servers are a combination between commercial ones which we obtain from a security organization and custom ones that are included by our staff to maximize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Servers

All of our dedicated servers which are installed with the Hepsia hosting Control Panel come with ModSecurity, so any app you upload or set up will be protected from the very beginning and you'll not have to worry about common attacks or vulnerabilities. A separate section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall discover in the logs shall enable you to to secure your Internet sites better - the IP an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you can see whether a site needs an update, whether you should block IPs from accessing your hosting server, etc. Aside from the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well every time they come across a new threat that's not yet a part of the commercial bundle.