ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is employed to stop attacks against script-driven Internet sites by using security rules which contain certain expressions. In this way, the firewall can stop hacking and spamming attempts and shield even Internet sites which are not updated often. As an example, several unsuccessful login attempts to a script administrator area or attempts to execute a certain file with the intention to get access to the script shall trigger particular rules, so ModSecurity will block these activities the minute it detects them. The firewall is very efficient since it monitors the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily prevent an attack before any harm is done. It also maintains an incredibly comprehensive log of all attack attempts which features more info than conventional Apache logs, so you could later check out the data and take extra measures to boost the security of your sites if needed.

ModSecurity in Website Hosting

ModSecurity can be found with every website hosting package that we offer and it's turned on by default for any domain or subdomain that you include through your Hepsia CP. In case it interferes with any of your applications or you'd like to disable it for whatever reason, you shall be able to do this through the ModSecurity section of Hepsia with just a click. You could also use a passive mode, so the firewall will recognize potential attacks and keep a log, but won't take any action. You'll be able to see extensive logs in the exact same section, including the IP address where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For max security of our customers we use a group of commercial firewall rules combined with custom ones which are included by our system admins.

ModSecurity in Semi-dedicated Hosting

We have integrated ModSecurity as a standard within all semi-dedicated hosting plans, so your web applications will be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will allow you to switch on or turn off the firewall for any website with a click. You'll also have the ability to turn on a passive detection mode through which ModSecurity shall keep a log of possible attacks without really stopping them. The detailed logs contain the nature of the attack and what ModSecurity response this attack initiated, where it came from, and so forth. The list of rules which we employ is regularly updated as to match any new risks which might appear on the Internet and it comes with both commercial rules that we get from a security corporation and custom-written ones that our administrators add in the event that they discover a threat that's not present inside the commercial list yet.

ModSecurity in Dedicated Hosting

All of our dedicated servers that are set up with the Hepsia hosting Control Panel come with ModSecurity, so any app you upload or install shall be properly secured from the very beginning and you will not have to stress about common attacks or vulnerabilities. An individual section within Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records information about intrusions, but does not take actions to stop them. What you shall find in the logs can easily help you to secure your Internet sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this information, you could see if a website needs an update, if you need to block IPs from accessing your web server, and so forth. Besides the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too whenever they find a new threat that's not yet a part of the commercial bundle.