ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It's employed to stop attacks against script-driven websites by employing security rules which contain particular expressions. This way, the firewall can stop hacking and spamming attempts and shield even Internet sites that aren't updated regularly. For instance, several unsuccessful login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script shall trigger certain rules, so ModSecurity shall block out these activities the second it detects them. The firewall is extremely efficient as it monitors the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily prevent an attack before any damage is done. It furthermore maintains a very comprehensive log of all attack attempts which features more info than traditional Apache logs, so you could later examine the data and take extra measures to increase the security of your sites if necessary.

ModSecurity in Shared Hosting

ModSecurity comes standard with all shared hosting packages that we offer and it'll be switched on automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you could switch on and disable it with only a click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to prevent them. The log for any of your Internet sites shall contain elaborate info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and incorporate both commercial ones that we get from a third-party security company and custom ones which our system admins include in case that they detect a new sort of attacks. In this way, the Internet sites you host here shall be a lot more secure without any action required on your end.

ModSecurity in Semi-dedicated Servers

Any web program which you install in your new semi-dedicated server account shall be protected by ModSecurity since the firewall comes with all our hosting plans and is switched on by default for any domain and subdomain which you add or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section within Hepsia where not only could you activate or deactivate it completely, but you can also switch on a passive mode, so the firewall won't stop anything, but it will still maintain a record of possible attacks. This requires simply a click and you will be able to see the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, and so forth. The firewall uses 2 sets of rules on our web servers - a commercial one that we get from a third-party web security company and a custom one that our admins update personally as to respond to recently discovered risks immediately.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers which we offer and it'll be turned on automatically for any new domain or subdomain that you add on the web server. This way, any web app that you install shall be protected from the very beginning without doing anything by hand on your end. The firewall could be managed through the section of the Control Panel which bears the same name. This is the location in whichyou can switch off ModSecurity or activate its passive mode, so it won't take any action towards threats, but will still keep a comprehensive log. The recorded info is available within the same section as well and you shall be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules which we use on our servers are a combination between commercial ones that we get from a security company and custom ones that are added by our admins to enhance the protection of any web apps hosted on our end.

ModSecurity in Dedicated Servers

All of our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any app that you upload or install shall be properly secured from the very beginning and you won't need to bother about common attacks or vulnerabilities. An independent section within Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or activate a detection mode so that it records information about intrusions, but does not take actions to prevent them. What you'll see in the logs shall allow you to to secure your Internet sites better - the IP an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, etc. With this info, you can see whether a site needs an update, whether you ought to block IPs from accessing your web server, etcetera. On top of the third-party commercial security rules for ModSecurity we use, our admins include custom ones too every time they find a new threat that's not yet a part of the commercial bundle.