ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to stop attacks towards script-driven Internet sites by using security rules that contain specific expressions. This way, the firewall can prevent hacking and spamming attempts and preserve even sites which aren't updated often. For instance, multiple failed login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script will trigger particular rules, so ModSecurity shall stop these activities the instant it discovers them. The firewall is very efficient as it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any damage is done. It also maintains a very thorough log of all attack attempts that contains more info than typical Apache logs, so you can later analyze the data and take additional measures to increase the security of your websites if required.

ModSecurity in Web Hosting

ModSecurity comes standard with all web hosting solutions that we offer and it shall be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you could switch on and deactivate it with a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to prevent them. The log for any of your sites shall include comprehensive information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are regularly updated and incorporate both commercial ones which we get from a third-party security business and custom ones our system admins include in case that they detect a new kind of attacks. In this way, the sites which you host here will be much more secure without any action needed on your end.

ModSecurity in Semi-dedicated Hosting

We've incorporated ModSecurity as a standard within all semi-dedicated hosting packages, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts shall allow you to activate or disable the firewall for any site with a mouse click. You shall also have the ability to turn on a passive detection mode in which ModSecurity shall maintain a log of possible attacks without actually stopping them. The thorough logs include the nature of the attack and what ModSecurity response that attack initiated, where it came from, and so forth. The list of rules which we employ is frequently updated as to match any new threats which may appear on the Internet and it comes with both commercial rules that we get from a security company and custom-written ones that our administrators add if they find a threat which is not present within the commercial list yet.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting CP, so your web apps shall be protected from the second your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you could disable it with a click of your mouse via the corresponding section of Hepsia. You could also set it to work in detection mode, so it'll keep a detailed log of any possible attacks without taking any action to prevent them. The logs are available in the exact same section and provide info about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For optimum security, we use not just commercial rules from a company operating in the field of web security, but also custom ones that our administrators include manually so as to react to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Web Hosting

All our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any application which you upload or install shall be protected from the very beginning and you will not need to stress about common attacks or vulnerabilities. An independent section inside Hepsia will enable you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you will find in the logs shall allow you to to secure your websites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this data, you can see whether a site needs an update, whether you need to block IPs from accessing your hosting server, and so forth. On top of the third-party commercial security rules for ModSecurity that we use, our admins include custom ones as well when they discover a new threat that's not yet in the commercial bundle.