ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's used to prevent attacks toward script-driven Internet sites through the use of security rules that contain certain expressions. This way, the firewall can stop hacking and spamming attempts and shield even sites which aren't updated regularly. For example, numerous failed login attempts to a script admin area or attempts to execute a particular file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will block these activities the moment it detects them. The firewall is very efficient because it monitors the entire HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any damage is done. It furthermore keeps an exceptionally comprehensive log of all attack attempts which contains more information than standard Apache logs, so you can later analyze the data and take further measures to improve the security of your sites if required.

ModSecurity in Cloud Hosting

ModSecurity is available on all cloud hosting servers, so when you opt to host your websites with our business, they'll be shielded from a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you'll have to do on your end. You shall be able to stop ModSecurity for any website if needed, or to activate a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You shall be able to view specific logs from your Hepsia CP including the IP address where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. As we take the safety of our customers' websites seriously, we employ a collection of commercial rules that we get from one of the best companies that maintain this sort of rules. Our admins also include custom rules to make sure that your Internet sites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you choose to host your Internet sites with our company, there shall not be anything special you'll need to do given that the firewall is switched on by default for all domains and subdomains that you include via your hosting Control Panel. If needed, you'll be able to disable ModSecurity for a given website or enable the so-called detection mode in which case the firewall shall still operate and record information, but shall not do anything to prevent potential attacks against your sites. Comprehensive logs shall be available within your CP and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, and so forth. We use two types of rules on our servers - commercial ones from a business that operates in the field of web security, and customized ones which our admins often include to respond to newly identified threats in a timely manner.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers which we offer and it shall be turned on automatically for any new domain or subdomain you add on the web server. That way, any web app you install shall be secured from the very beginning without doing anything by hand on your end. The firewall may be managed through the section of the Control Panel that has the same name. This is the place in whichyou'll be able to turn off ModSecurity or activate its passive mode, so it will not take any action against threats, but will still maintain a detailed log. The recorded information is available in the same area as well and you will be able to see what IPs any attacks came from so that you block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules which we employ on our servers are a blend between commercial ones that we obtain from a security organization and custom ones that are included by our administrators to enhance the protection of any web apps hosted on our end.

ModSecurity in Dedicated Servers

All of our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program you upload or install shall be properly secured from the very beginning and you won't have to worry about common attacks or vulnerabilities. A separate section within Hepsia will allow you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you shall find in the logs can easily allow you to to secure your websites better - the IP an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this data, you'll be able to see whether a site needs an update, if you should block IPs from accessing your web server, etcetera. In addition to the third-party commercial security rules for ModSecurity we use, our administrators include custom ones too when they discover a new threat that's not yet included in the commercial bundle.