ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is used to prevent attacks towards script-driven websites by using security rules that contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and shield even websites that are not updated on a regular basis. As an example, numerous failed login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script will trigger particular rules, so ModSecurity shall stop these activities the second it detects them. The firewall is very efficient since it screens the whole HTTP traffic to a website in real time without slowing it down, so it could prevent an attack before any damage is done. It also maintains a very thorough log of all attack attempts which includes more information than standard Apache logs, so you can later analyze the data and take extra measures to boost the security of your sites if needed.

ModSecurity in Web Hosting

ModSecurity comes standard with all web hosting solutions that we supply and it shall be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you can switch on and deactivate it with just a click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to prevent them. The log for each of your sites will contain in-depth info including the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules we use are constantly updated and include both commercial ones which we get from a third-party security company and custom ones which our system administrators add in the event that they detect a new sort of attacks. That way, the sites you host here shall be way more secure with no action required on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server plans and if you opt to host your sites with us, there won't be anything special you'll need to do as the firewall is turned on by default for all domains and subdomains which you add through your hosting CP. If needed, you can disable ModSecurity for a particular website or enable the so-called detection mode in which case the firewall will still function and record data, but will not do anything to stop potential attacks against your Internet sites. Detailed logs shall be readily available inside your CP and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks came from, and so forth. We employ two sorts of rules on our servers - commercial ones from a company which operates in the field of web security, and custom made ones that our admins sometimes add to respond to newly discovered threats on time.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting CP, so your web programs shall be protected from the second your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if needed, you can disable it with a mouse click from the corresponding section of Hepsia. You can also set it to work in detection mode, so it shall keep a detailed log of any possible attacks without taking any action to stop them. The logs are available within the same section and offer information about the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For maximum security, we employ not simply commercial rules from a business working in the field of web security, but also custom ones which our administrators add personally in order to respond to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

When you choose to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web applications will be protected immediately since ModSecurity is supplied with all Hepsia-based packages. You'll be able to regulate the firewall without difficulty and if needed, you will be able to turn it off or enable its passive mode when it shall only maintain a log of what's going on without taking any action to stop potential attacks. The logs that you can find within the same section of the Control Panel are really detailed and feature information about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etcetera. This data will allow you to take measures and boost the protection of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our staff include when they detect attacks which have not yet been included inside the commercial pack.