ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's employed to prevent attacks toward script-driven sites by using security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and preserve even Internet sites that aren't updated regularly. For example, several failed login attempts to a script administrative area or attempts to execute a specific file with the purpose to get access to the script will trigger specific rules, so ModSecurity will block out these activities the second it detects them. The firewall is very efficient because it monitors the whole HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any damage is done. It furthermore maintains a very thorough log of all attack attempts that contains more information than traditional Apache logs, so you can later examine the data and take extra measures to increase the security of your sites if necessary.

ModSecurity in Shared Web Hosting

We provide ModSecurity with all shared web hosting packages, so your web apps shall be shielded from malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you will be able to stop it using the respective section of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you'll find inside Hepsia are very detailed and feature data about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, etc. We use a set of commercial rules that are often updated, but sometimes our administrators include custom rules as well in order to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

We've incorporated ModSecurity as a standard within all semi-dedicated server products, so your web applications will be protected the instant you install them under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will permit you to activate or turn off the firewall for any Internet site with a click. You'll also have the ability to turn on a passive detection mode in which ModSecurity will keep a log of possible attacks without actually preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response this attack generated, where it originated from, and so forth. The list of rules we use is regularly updated in order to match any new risks which may appear on the Internet and it comes with both commercial rules that we get from a security business and custom-written ones that our administrators include if they discover a threat that's not present within the commercial list yet.

ModSecurity in VPS Servers

Safety is of the utmost importance to us, so we install ModSecurity on all VPS servers which are made available with the Hepsia CP as a standard. The firewall could be managed through a dedicated section inside Hepsia and is activated automatically when you add a new domain or generate a subdomain, so you won't have to do anything personally. You shall also be able to deactivate it or activate the so-called detection mode, so it'll maintain a log of possible attacks you can later analyze, but won't prevent them. The logs in both passive and active modes contain info regarding the form of the attack and how it was eliminated, what IP address it came from and other important data that may help you to tighten the security of your sites by updating them or blocking IPs, for instance. Beyond the commercial rules which we get for ModSecurity from a third-party security enterprise, we also employ our own rules since occasionally we detect specific attacks which are not yet present inside the commercial pack. That way, we could increase the security of your Virtual private server right away instead of waiting for a certified update.

ModSecurity in Dedicated Servers

If you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured immediately since ModSecurity is provided with all Hepsia-based plans. You will be able to manage the firewall easily and if needed, you shall be able to turn it off or switch on its passive mode when it'll only keep a log of what's going on without taking any action to prevent potential attacks. The logs which you'll find in the very same section of the CP are extremely detailed and include info about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so forth. This info will enable you to take measures and enhance the protection of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our staff include every time they identify attacks which have not yet been included within the commercial pack.