ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is employed to stop attacks towards script-driven websites through the use of security rules that contain particular expressions. That way, the firewall can block hacking and spamming attempts and preserve even sites that aren't updated regularly. For example, numerous unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script shall trigger particular rules, so ModSecurity will block out these activities the minute it discovers them. The firewall is very efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any damage is done. It additionally keeps an incredibly thorough log of all attack attempts which contains more info than traditional Apache logs, so you could later check out the data and take extra measures to improve the security of your sites if needed.

ModSecurity in Cloud Website Hosting

ModSecurity comes by default with all cloud website hosting solutions that we supply and it will be switched on automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has three different modes, so you can activate and deactivate it with only a click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to stop them. The log for any of your sites shall include detailed info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules we use are frequently updated and comprise of both commercial ones that we get from a third-party security firm and custom ones our system administrators add in the event that they detect a new type of attacks. That way, the sites you host here will be a lot more secure without any action expected on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server plans and if you choose to host your websites with us, there shall not be anything special you'll have to do as the firewall is switched on by default for all domains and subdomains which you add through your hosting CP. If necessary, you can disable ModSecurity for a particular site or switch on the so-called detection mode in which case the firewall will still operate and record info, but won't do anything to stop potential attacks against your websites. Detailed logs will be accessible within your CP and you shall be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, and so forth. We use two types of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom made ones that our administrators sometimes add to respond to newly identified threats on time.

ModSecurity in VPS Servers

ModSecurity is provided with all Hepsia-based VPS servers that we offer and it shall be switched on automatically for every new domain or subdomain you include on the hosting server. In this way, any web app that you install will be protected right away without doing anything manually on your end. The firewall may be handled through the section of the Control Panel that has the same name. This is the location whereyou'll be able to switch off ModSecurity or enable its passive mode, so it will not take any action against threats, but shall still maintain a thorough log. The recorded data is available inside the same area as well and you shall be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules that we use on our servers are a combination between commercial ones we obtain from a security organization and custom ones that are added by our administrators to improve the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

All our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any application which you upload or set up will be secured from the very beginning and you will not have to bother about common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records information about intrusions, but does not take actions to prevent them. What you will see in the logs shall allow you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, etcetera. With this data, you could see if a website needs an update, whether you should block IPs from accessing your hosting server, and so on. In addition to the third-party commercial security rules for ModSecurity which we use, our admins include custom ones as well if they discover a new threat that's not yet in the commercial bundle.