ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's used to prevent attacks towards script-driven websites through the use of security rules that contain certain expressions. This way, the firewall can stop hacking and spamming attempts and preserve even Internet sites that aren't updated on a regular basis. For instance, numerous failed login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script will trigger particular rules, so ModSecurity shall block these activities the instant it identifies them. The firewall is very efficient since it screens the whole HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally keeps a very comprehensive log of all attack attempts which contains more info than conventional Apache logs, so you can later check out the data and take additional measures to improve the security of your websites if needed.

ModSecurity in Web Hosting

ModSecurity is supplied with all web hosting machines, so if you choose to host your websites with our company, they will be protected against an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you will have to do on your end. You will be able to stop ModSecurity for any Internet site if necessary, or to switch on a detection mode, so all activity will be recorded, but the firewall won't take any real action. You will be able to view specific logs using your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity handled the threat. Since we take the security of our clients' sites seriously, we use a set of commercial rules that we get from one of the best companies that maintain this kind of rules. Our administrators also add custom rules to ensure that your sites shall be protected against as many risks as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you opt to host your sites with our company, there will not be anything special you'll have to do given that the firewall is switched on by default for all domains and subdomains that you include using your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a given Internet site or switch on the so-called detection mode in which case the firewall shall still work and record info, but won't do anything to stop possible attacks against your websites. Comprehensive logs shall be accessible inside your Control Panel and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks originated from, and so forth. We use two sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom made ones which our admins occasionally add to respond to newly identified risks in a timely manner.

ModSecurity in VPS Servers

Protection is very important to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia Control Panel as a standard. The firewall could be managed via a dedicated section within Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you'll not have to do anything manually. You will also be able to disable it or turn on the so-called detection mode, so it'll maintain a log of potential attacks you can later analyze, but won't stop them. The logs in both passive and active modes include details regarding the type of the attack and how it was eliminated, what IP address it originated from and other valuable information that could help you to tighten the security of your websites by updating them or blocking IPs, as an example. Beyond the commercial rules we get for ModSecurity from a third-party security firm, we also employ our own rules because from time to time we detect specific attacks which aren't yet present in the commercial package. That way, we can improve the protection of your VPS promptly as opposed to waiting for a certified update.

ModSecurity in Dedicated Servers

If you decide to host your websites on a dedicated server with the Hepsia CP, your web applications shall be secured straight away because ModSecurity is available with all Hepsia-based packages. You shall be able to manage the firewall with ease and if required, you shall be able to turn it off or activate its passive mode when it will only keep a log of what is occurring without taking any action to prevent potential attacks. The logs which you will find within the exact same section of the CP are really detailed and feature information about the attacker IP address, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etc. This information will allow you to take measures and increase the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our staff add every time they identify attacks which have not yet been included in the commercial pack.