ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's employed to stop attacks toward script-driven Internet sites through the use of security rules which contain specific expressions. In this way, the firewall can prevent hacking and spamming attempts and protect even Internet sites which aren't updated regularly. As an example, several failed login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script will trigger particular rules, so ModSecurity will block these activities the moment it detects them. The firewall is very efficient as it monitors the entire HTTP traffic to a website in real time without slowing it down, so it could prevent an attack before any harm is done. It also keeps an exceptionally comprehensive log of all attack attempts which includes more info than standard Apache logs, so you could later examine the data and take extra measures to increase the security of your sites if required.

ModSecurity in Shared Website Hosting

We provide ModSecurity with all shared website hosting plans, so your Internet applications shall be protected against harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you will be able to stop it using the respective section of your Hepsia CP. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you shall find inside Hepsia are incredibly detailed and include info about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, and so on. We use a group of commercial rules that are frequently updated, but sometimes our admins include custom rules as well in order to better protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you opt to host your websites with us, there won't be anything special you'll have to do given that the firewall is switched on by default for all domains and subdomains that you include via your hosting CP. If required, you can disable ModSecurity for a particular website or enable the so-called detection mode in which case the firewall will still operate and record info, but will not do anything to stop potential attacks on your websites. In depth logs shall be accessible inside your Control Panel and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones that our administrators sometimes add to respond to newly found risks promptly.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers which we offer and it'll be activated automatically for every new domain or subdomain which you add on the server. That way, any web app that you install shall be protected immediately without doing anything by hand on your end. The firewall may be managed from the section of the CP that bears the same name. This is the location whereyou could switch off ModSecurity or activate its passive mode, so it will not take any action toward threats, but shall still maintain a detailed log. The recorded information is available in the same section as well and you will be able to see what IPs any attacks originated from to enable you to stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules that we use on our servers are a combination between commercial ones which we obtain from a security company and custom ones which are included by our staff to optimize the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers

If you opt to host your websites on a dedicated server with the Hepsia Control Panel, your web applications will be protected immediately since ModSecurity is available with all Hepsia-based solutions. You will be able to regulate the firewall easily and if required, you will be able to turn it off or activate its passive mode when it'll only maintain a log of what's occurring without taking any action to prevent potential attacks. The logs that you'll find within the very same section of the CP are very detailed and feature information about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, etc. This data will allow you to take measures and increase the protection of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our administrators include whenever they detect attacks which haven't yet been included inside the commercial pack.