ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is employed to prevent attacks towards script-driven Internet sites through the use of security rules which contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and protect even sites which aren't updated regularly. For example, a number of failed login attempts to a script administrative area or attempts to execute a specific file with the purpose to get access to the script will trigger particular rules, so ModSecurity shall block out these activities the second it detects them. The firewall is quite efficient because it monitors the whole HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any damage is done. It furthermore keeps an incredibly comprehensive log of all attack attempts which contains more information than conventional Apache logs, so you can later analyze the data and take extra measures to improve the security of your websites if necessary.

ModSecurity in Shared Web Hosting

ModSecurity is provided with all shared web hosting machines, so if you choose to host your Internet sites with our business, they shall be shielded from an array of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you'll need to do on your end. You shall be able to stop ModSecurity for any Internet site if necessary, or to enable a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You'll be able to view specific logs using your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the protection of our customers' sites seriously, we use a collection of commercial rules that we get from one of the best firms that maintain such rules. Our admins also add custom rules to make sure that your websites shall be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer feature ModSecurity and given that the firewall is turned on by default, any website that you create under a domain or a subdomain will be protected immediately. An individual section in the Hepsia CP which comes with the semi-dedicated accounts is devoted to ModSecurity and it will allow you to start and stop the firewall for any website or switch on a detection mode. With the latter, ModSecurity will not take any action, but it'll still identify possible attacks and will keep all data within a log as if it were fully active. The logs can be found inside the same section of the Control Panel and they include information regarding the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules we employ on our servers are a mix between commercial ones from a security business and custom ones made by our system administrators. Therefore, we offer greater security for your web apps as we can shield them from attacks even before security firms release updates for completely new threats.

ModSecurity in VPS Servers

All VPS servers which are provided with the Hepsia CP feature ModSecurity. The firewall is installed and switched on by default for all domains that are hosted on the machine, so there shall not be anything special which you shall have to do to protect your websites. It will take you just a mouse click to stop ModSecurity if required or to switch on its passive mode so that it records what goes on without taking any actions to stop intrusions. You shall be able to see the logs created in active or passive mode through the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall used to deal with it, and so on. We use a combination of commercial and custom rules so as to make sure that ModSecurity shall prevent as many threats as possible, thus boosting the protection of your web programs as much as possible.

ModSecurity in Dedicated Servers

All of our dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any program you upload or install shall be protected from the very beginning and you will not have to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you'll find in the logs shall help you to secure your sites better - the IP address an attack came from, what site was attacked and exactly how, what ModSecurity rule was triggered, etc. With this info, you could see whether a site needs an update, if you should block IPs from accessing your server, and so forth. Besides the third-party commercial security rules for ModSecurity we use, our admins add custom ones as well whenever they come across a new threat that's not yet in the commercial bundle.