ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is employed to stop attacks against script-driven websites through the use of security rules that contain certain expressions. This way, the firewall can prevent hacking and spamming attempts and protect even Internet sites that are not updated on a regular basis. For instance, several failed login attempts to a script administrator area or attempts to execute a specific file with the intention to get access to the script will trigger specific rules, so ModSecurity shall block out these activities the instant it discovers them. The firewall is incredibly efficient because it tracks the entire HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It also maintains an incredibly thorough log of all attack attempts which contains more information than standard Apache logs, so you can later examine the data and take further measures to boost the security of your sites if needed.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting packages, so your web apps shall be shielded from destructive attacks. The firewall is turned on as standard for all domains and subdomains, but in case you would like, you will be able to stop it through the respective part of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you shall find inside Hepsia are extremely detailed and feature data about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, and so forth. We employ a set of commercial rules which are frequently updated, but sometimes our admins add custom rules as well in order to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web app that you set up in your new semi-dedicated hosting account will be protected by ModSecurity because the firewall is provided with all our hosting solutions and is activated by default for any domain and subdomain you include or create through your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section in Hepsia where not simply could you activate or deactivate it fully, but you could also enable a passive mode, so the firewall shall not stop anything, but it shall still maintain an archive of possible attacks. This takes simply a mouse click and you will be able to view the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, and so on. The firewall uses 2 sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one which our admins update manually as to respond to newly discovered risks as soon as possible.

ModSecurity in Dedicated Hosting

ModSecurity is provided with all dedicated servers which are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it as it is switched on by default each time you add a new domain or subdomain on your server. In case it interferes with any of your applications, you will be able to stop it through the respective section of Hepsia, or you may leave it in passive mode, so it'll recognize attacks and shall still keep a log for them, but shall not stop them. You could analyze the logs later to learn what you can do to boost the protection of your sites since you'll find information such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity responded, etcetera. The rules which we use are commercial, therefore they are regularly updated by a security firm, but to be on the safe side, our admins also add custom rules from time to time as to deal with any new threats they have discovered.