ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to prevent attacks against script-driven Internet sites by using security rules which contain specific expressions. This way, the firewall can stop hacking and spamming attempts and shield even sites which are not updated often. For instance, several failed login attempts to a script admin area or attempts to execute a certain file with the intention to get access to the script will trigger specific rules, so ModSecurity will block these activities the instant it discovers them. The firewall is extremely efficient because it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it could prevent an attack before any harm is done. It furthermore keeps an exceptionally comprehensive log of all attack attempts that features more information than typical Apache logs, so you can later check out the data and take further measures to enhance the security of your websites if needed.

ModSecurity in Cloud Web Hosting

We provide ModSecurity with all cloud web hosting packages, so your Internet applications shall be resistant to malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you'd like, you'll be able to stop it via the respective area of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you'll find within Hepsia are quite detailed and offer info about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, etc. We use a set of commercial rules that are often updated, but sometimes our administrators include custom rules as well in order to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

Any web application you set up in your new semi-dedicated hosting account will be protected by ModSecurity since the firewall comes with all our hosting plans and is switched on by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated section in Hepsia where not simply could you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall will not block anything, but it shall still maintain a record of potential attacks. This takes just a click and you shall be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, and so forth. The firewall uses two sets of rules on our servers - a commercial one which we get from a third-party web security company and a custom one that our admins update manually in order to respond to newly discovered risks as soon as possible.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you will not have to do anything specific on your end to employ it as it is turned on by default each time you include a new domain or subdomain on your hosting server. In case it disrupts any of your apps, you'll be able to stop it via the respective part of Hepsia, or you may leave it operating in passive mode, so it'll detect attacks and shall still keep a log for them, but will not prevent them. You may look at the logs later to determine what you can do to boost the protection of your Internet sites since you'll find info such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity reacted, and so on. The rules that we use are commercial, hence they're constantly updated by a security provider, but to be on the safe side, our staff also include custom rules from time to time in order to react to any new threats they have discovered.