ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's used to prevent attacks against script-driven websites through the use of security rules which contain certain expressions. This way, the firewall can stop hacking and spamming attempts and shield even Internet sites that aren't updated regularly. As an example, numerous unsuccessful login attempts to a script admin area or attempts to execute a specific file with the purpose to get access to the script will trigger particular rules, so ModSecurity shall block out these activities the minute it identifies them. The firewall is incredibly efficient because it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It additionally keeps an incredibly comprehensive log of all attack attempts which contains more information than typical Apache logs, so you could later analyze the data and take further measures to boost the security of your sites if necessary.

ModSecurity in Shared Hosting

ModSecurity is available with each and every shared hosting solution that we offer and it's turned on by default for every domain or subdomain that you add through your Hepsia Control Panel. In the event that it interferes with any of your apps or you'd like to disable it for whatever reason, you'll be able to achieve that through the ModSecurity section of Hepsia with just a click. You may also activate a passive mode, so the firewall will identify possible attacks and maintain a log, but shall not take any action. You can view detailed logs in the exact same section, including the IP where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, etc. For optimum security of our clients we use a group of commercial firewall rules blended with custom ones that are provided by our system admins.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting solutions and if you decide to host your websites with us, there will not be anything special you will have to do since the firewall is turned on by default for all domains and subdomains which you add via your hosting CP. If necessary, you can disable ModSecurity for a particular site or turn on the so-called detection mode in which case the firewall will still function and record information, but shall not do anything to stop potential attacks on your sites. Detailed logs shall be available inside your CP and you shall be able to see which kind of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, etc. We use 2 sorts of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones which our administrators often include to respond to newly discovered risks promptly.

ModSecurity in VPS

ModSecurity is included with all Hepsia-based virtual private servers we offer and it'll be activated automatically for any new domain or subdomain which you include on the server. In this way, any web app that you install shall be secured right from the start without doing anything manually on your end. The firewall can be handled from the section of the CP which bears the same name. This is the location in whichyou could switch off ModSecurity or enable its passive mode, so it shall not take any action towards threats, but shall still maintain a detailed log. The recorded info is available inside the same area as well and you'll be able to see what IPs any attacks came from so that you stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules which we use on our servers are a combination between commercial ones that we get from a security company and custom ones which are included by our administrators to maximize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you will not need to do anything specific on your end to use it since it's switched on by default each time you include a new domain or subdomain on your web server. In the event that it interferes with some of your programs, you'll be able to stop it via the respective section of Hepsia, or you could leave it operating in passive mode, so it shall identify attacks and will still keep a log for them, but won't prevent them. You may look at the logs later to learn what you can do to enhance the protection of your websites since you'll find info such as where an intrusion attempt originated from, what website was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules that we use are commercial, hence they're frequently updated by a security firm, but to be on the safe side, our administrators also include custom rules occasionally as to react to any new threats they have found.