ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's employed to stop attacks against script-driven websites by using security rules which contain certain expressions. That way, the firewall can block hacking and spamming attempts and preserve even websites that aren't updated on a regular basis. For instance, a number of unsuccessful login attempts to a script administrator area or attempts to execute a certain file with the purpose to get access to the script shall trigger certain rules, so ModSecurity shall block out these activities the minute it discovers them. The firewall is extremely efficient since it screens the whole HTTP traffic to a site in real time without slowing it down, so it can easily prevent an attack before any damage is done. It additionally maintains an exceptionally thorough log of all attack attempts which includes more info than typical Apache logs, so you could later examine the data and take further measures to boost the security of your websites if needed.

ModSecurity in Website Hosting

ModSecurity is supplied with all website hosting servers, so when you opt to host your websites with our company, they will be resistant to an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you'll have to do on your end. You will be able to stop ModSecurity for any Internet site if needed, or to activate a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You shall be able to view comprehensive logs via your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity addressed the threat. Since we take the safety of our clients' Internet sites very seriously, we employ a group of commercial rules which we take from one of the best companies that maintain this kind of rules. Our admins also add custom rules to ensure that your Internet sites will be protected against as many threats as possible.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer include ModSecurity and because the firewall is switched on by default, any website you set up under a domain or a subdomain will be secured immediately. A separate section within the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to start and stop the firewall for any website or activate a detection mode. With the last option, ModSecurity shall not take any action, but it'll still recognize possible attacks and will keep all info inside a log as if it were fully active. The logs could be found inside the very same section of the CP and they feature details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we use on our servers are a mix of commercial ones from a security firm and custom ones created by our system admins. Consequently, we provide increased security for your web programs as we can defend them from attacks before security companies release updates for completely new threats.

ModSecurity in VPS Servers

All VPS servers which are set up with the Hepsia CP come with ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the server, so there won't be anything special that you'll need to do to protect your websites. It will take you just a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any actions to stop intrusions. You'll be able to look at the logs produced in passive or active mode through the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall used to deal with it, and so on. We use a combination of commercial and custom rules so as to make certain that ModSecurity shall prevent as many threats as possible, therefore enhancing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers

All of our dedicated servers which are set up with the Hepsia hosting Control Panel include ModSecurity, so any application that you upload or set up shall be secured from the very beginning and you will not need to bother about common attacks or vulnerabilities. An individual section inside Hepsia will allow you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall discover in the logs shall enable you to to secure your websites better - the IP an attack came from, what website was attacked and exactly how, what ModSecurity rule was triggered, etcetera. With this data, you can see whether a website needs an update, whether you need to block IPs from accessing your server, and so forth. Besides the third-party commercial security rules for ModSecurity that we use, our admins include custom ones as well when they discover a new threat which is not yet in the commercial bundle.