ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It is employed to prevent attacks against script-driven websites by employing security rules that contain particular expressions. This way, the firewall can stop hacking and spamming attempts and shield even Internet sites that are not updated frequently. As an example, several failed login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the second it discovers them. The firewall is quite efficient as it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any damage is done. It furthermore keeps an incredibly thorough log of all attack attempts that contains more information than traditional Apache logs, so you could later check out the data and take additional measures to enhance the security of your Internet sites if necessary.

ModSecurity in Cloud Web Hosting

We provide ModSecurity with all cloud web hosting plans, so your Internet applications shall be resistant to destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you shall be able to stop it via the respective area of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you will discover within Hepsia are quite detailed and offer data about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, and so on. We use a set of commercial rules which are regularly updated, but sometimes our admins add custom rules as well so as to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

We have included ModSecurity as a standard in all semi-dedicated server products, so your web apps will be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts shall permit you to enable or disable the firewall for any Internet site with a mouse click. You will also have the ability to activate a passive detection mode through which ModSecurity will keep a log of possible attacks without really stopping them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack triggered, where it originated from, and so on. The list of rules we use is frequently updated as to match any new risks that could appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones which our admins add in the event that they discover a threat that is not present inside the commercial list yet.

ModSecurity in VPS Servers

All VPS servers that are offered with the Hepsia CP feature ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the machine, so there shall not be anything special which you'll need to do to protect your Internet sites. It shall take you just a mouse click to stop ModSecurity if necessary or to activate its passive mode so that it records what happens without taking any measures to stop intrusions. You will be able to view the logs generated in active or passive mode through the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall used to handle it, and so forth. We use a mixture of commercial and custom rules so as to make sure that ModSecurity will stop as many threats as possible, therefore improving the protection of your web programs as much as possible.

ModSecurity in Dedicated Servers

When you opt to host your websites on a dedicated server with the Hepsia Control Panel, your web programs will be secured straight away because ModSecurity is available with all Hepsia-based plans. You shall be able to regulate the firewall without difficulty and if needed, you will be able to turn it off or enable its passive mode when it will only maintain a log of what's happening without taking any action to prevent potential attacks. The logs which you can find inside the same section of the Control Panel are incredibly detailed and contain information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This information will allow you to take measures and enhance the security of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our administrators add every time they recognize attacks that have not yet been included inside the commercial pack.