ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to stop attacks against script-driven sites by using security rules that contain specific expressions. That way, the firewall can block hacking and spamming attempts and shield even websites that aren't updated often. As an example, a number of unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script shall trigger specific rules, so ModSecurity shall block these activities the moment it detects them. The firewall is very efficient as it tracks the entire HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any harm is done. It additionally maintains a very detailed log of all attack attempts which features more information than conventional Apache logs, so you can later check out the data and take extra measures to boost the security of your websites if necessary.

ModSecurity in Cloud Hosting

ModSecurity is available with every single cloud hosting solution which we offer and it is turned on by default for every domain or subdomain that you include via your Hepsia CP. In the event that it disrupts any of your apps or you would like to disable it for any reason, you'll be able to do this through the ModSecurity section of Hepsia with just a click. You may also use a passive mode, so the firewall will detect possible attacks and keep a log, but will not take any action. You could see comprehensive logs in the exact same section, including the IP address where the attack originated from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etc. For max security of our clients we use a group of commercial firewall rules blended with custom ones that are added by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web app which you install inside your new semi-dedicated hosting account will be protected by ModSecurity as the firewall is provided with all our hosting solutions and is turned on by default for any domain and subdomain you include or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity via a dedicated area in Hepsia where not only could you activate or deactivate it entirely, but you could also enable a passive mode, so the firewall shall not block anything, but it shall still keep a record of possible attacks. This requires just a mouse click and you will be able to see the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, and so on. The firewall uses 2 sets of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one which our administrators update manually as to respond to recently discovered threats immediately.

ModSecurity in VPS Web Hosting

All virtual private servers that are provided with the Hepsia Control Panel come with ModSecurity. The firewall is installed and turned on by default for all domains that are hosted on the server, so there will not be anything special which you'll have to do to protect your websites. It shall take you a click to stop ModSecurity if required or to turn on its passive mode so that it records what occurs without taking any actions to stop intrusions. You shall be able to look at the logs generated in passive or active mode from the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall employed to deal with it, etcetera. We employ a combination of commercial and custom rules in order to make certain that ModSecurity will block out as many risks as possible, hence boosting the protection of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

ModSecurity comes with all dedicated servers which are set up with our Hepsia Control Panel and you'll not need to do anything specific on your end to use it because it is switched on by default whenever you add a new domain or subdomain on your web server. In case it disrupts any of your programs, you will be able to stop it through the respective part of Hepsia, or you can leave it operating in passive mode, so it will recognize attacks and shall still maintain a log for them, but won't prevent them. You can look at the logs later to learn what you can do to enhance the protection of your Internet sites since you'll find details such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules which we use are commercial, hence they are regularly updated by a security firm, but to be on the safe side, our admins also add custom rules every now and then as to deal with any new threats they have discovered.