ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's employed to stop attacks towards script-driven Internet sites through the use of security rules which contain specific expressions. In this way, the firewall can stop hacking and spamming attempts and shield even Internet sites which aren't updated often. For instance, numerous failed login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script shall trigger particular rules, so ModSecurity shall block out these activities the instant it detects them. The firewall is very efficient as it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it could prevent an attack before any damage is done. It additionally maintains an incredibly thorough log of all attack attempts which features more information than traditional Apache logs, so you could later examine the data and take additional measures to increase the security of your Internet sites if required.

ModSecurity in Cloud Website Hosting

We offer ModSecurity with all cloud website hosting plans, so your Internet apps will be shielded from destructive attacks. The firewall is turned on as standard for all domains and subdomains, but in case you'd like, you will be able to stop it using the respective area of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will find within Hepsia are quite detailed and include info about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so forth. We use a set of commercial rules which are often updated, but sometimes our administrators add custom rules as well so as to better protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Servers

We have incorporated ModSecurity as a standard within all semi-dedicated server plans, so your web applications will be protected whenever you set them up under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will allow you to activate or turn off the firewall for any site with a click. You shall also have the ability to activate a passive detection mode in which ModSecurity will keep a log of possible attacks without really preventing them. The detailed logs include the nature of the attack and what ModSecurity response that attack generated, where it originated from, etc. The list of rules that we use is regularly updated in order to match any new risks which could appear on the Internet and it includes both commercial rules that we get from a security corporation and custom-written ones which our administrators include in the event that they find a threat that is not present within the commercial list yet.

ModSecurity in VPS Servers

All VPS servers that are offered with the Hepsia CP include ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the machine, so there will not be anything special which you shall have to do to protect your sites. It'll take you simply a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any measures to stop intrusions. You shall be able to see the logs generated in active or passive mode through the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to handle it, and so forth. We employ a mixture of commercial and custom rules in order to ensure that ModSecurity will block out as many risks as possible, hence enhancing the protection of your web apps as much as possible.

ModSecurity in Dedicated Servers

If you decide to host your Internet sites on a dedicated server with the Hepsia CP, your web applications will be secured straight away as ModSecurity is supplied with all Hepsia-based packages. You shall be able to regulate the firewall effortlessly and if necessary, you will be able to turn it off or enable its passive mode when it will only keep a log of what is occurring without taking any action to prevent potential attacks. The logs that you'll find within the very same section of the CP are really detailed and contain details about the attacker IP, what website and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etcetera. This info will allow you to take measures and boost the security of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our administrators include whenever they recognize attacks which haven't yet been included in the commercial pack.