ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to prevent attacks against script-driven websites by employing security rules that contain certain expressions. This way, the firewall can stop hacking and spamming attempts and shield even websites which aren't updated on a regular basis. For instance, multiple failed login attempts to a script admin area or attempts to execute a particular file with the intention to get access to the script will trigger particular rules, so ModSecurity shall block these activities the moment it identifies them. The firewall is quite efficient as it tracks the entire HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It also maintains an exceptionally thorough log of all attack attempts which includes more information than typical Apache logs, so you can later check out the data and take additional measures to boost the security of your Internet sites if needed.

ModSecurity in Shared Website Hosting

We provide ModSecurity with all shared website hosting solutions, so your Internet applications will be protected against destructive attacks. The firewall is turned on by default for all domains and subdomains, but in case you'd like, you'll be able to stop it using the respective area of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you shall discover in Hepsia are extremely detailed and feature information about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, and so on. We use a group of commercial rules which are regularly updated, but sometimes our administrators add custom rules as well in order to efficiently protect the websites hosted on our servers.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server solutions and if you decide to host your Internet sites with us, there will not be anything special you'll have to do as the firewall is turned on by default for all domains and subdomains that you include using your hosting CP. If required, you'll be able to disable ModSecurity for a certain Internet site or activate the so-called detection mode in which case the firewall shall still work and record data, but will not do anything to prevent potential attacks against your sites. Detailed logs will be readily available within your CP and you'll be able to see what type of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, etc. We use two sorts of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones that our administrators occasionally include to respond to newly found threats on time.

ModSecurity in VPS Servers

Safety is of the utmost importance to us, so we set up ModSecurity on all VPS servers which are made available with the Hepsia CP as a standard. The firewall could be managed via a dedicated section in Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you won't need to do anything personally. You shall also be able to disable it or activate the so-called detection mode, so it shall keep a log of potential attacks you can later analyze, but shall not stop them. The logs in both passive and active modes offer details regarding the form of the attack and how it was prevented, what IP address it came from and other valuable information which might help you to tighten the security of your websites by updating them or blocking IPs, for example. On top of the commercial rules which we get for ModSecurity from a third-party security firm, we also employ our own rules because every now and then we identify specific attacks that aren't yet present inside the commercial group. This way, we could improve the security of your Virtual private server right away instead of awaiting an official update.

ModSecurity in Dedicated Servers

All our dedicated servers that are set up with the Hepsia hosting Control Panel feature ModSecurity, so any app that you upload or install will be properly secured from the very beginning and you will not need to stress about common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records details about intrusions, but does not take actions to stop them. What you will find in the logs can easily enable you to to secure your sites better - the IP an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, and so forth. With this data, you could see if an Internet site needs an update, whether you need to block IPs from accessing your hosting server, etcetera. In addition to the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well every time they come across a new threat which is not yet included in the commercial bundle.