ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's employed to stop attacks toward script-driven websites through the use of security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and shield even websites which are not updated often. For example, numerous failed login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script will trigger certain rules, so ModSecurity will stop these activities the moment it discovers them. The firewall is extremely efficient since it screens the entire HTTP traffic to a site in real time without slowing it down, so it can prevent an attack before any damage is done. It also maintains an exceptionally comprehensive log of all attack attempts that features more information than traditional Apache logs, so you can later check out the data and take extra measures to enhance the security of your sites if necessary.
ModSecurity in Cloud Website Hosting
ModSecurity is available with every single cloud website hosting package that we provide and it is activated by default for any domain or subdomain which you add via your Hepsia Control Panel. If it disrupts any of your programs or you would like to disable it for whatever reason, you will be able to achieve that through the ModSecurity section of Hepsia with only a mouse click. You can also activate a passive mode, so the firewall will recognize potential attacks and keep a log, but shall not take any action. You'll be able to view extensive logs in the very same section, including the IP address where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, etcetera. For maximum safety of our customers we use a set of commercial firewall rules mixed with custom ones which are included by our system administrators.
ModSecurity in Semi-dedicated Hosting
We have incorporated ModSecurity by default within all semi-dedicated hosting products, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will permit you to enable or turn off the firewall for any site with a click. You'll also be able to activate a passive detection mode in which ModSecurity shall maintain a log of potential attacks without actually preventing them. The detailed logs include the nature of the attack and what ModSecurity response that attack caused, where it came from, and so on. The list of rules we employ is regularly updated in order to match any new threats that may appear on the Internet and it comes with both commercial rules that we get from a security business and custom-written ones that our administrators add if they discover a threat that's not present in the commercial list yet.
ModSecurity in VPS Web Hosting
All virtual private servers which are set up with the Hepsia CP include ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the machine, so there will not be anything special that you will have to do to protect your websites. It shall take you simply a mouse click to stop ModSecurity if required or to switch on its passive mode so that it records what goes on without taking any measures to stop intrusions. You'll be able to view the logs produced in passive or active mode through the corresponding section of Hepsia and learn more about the type of the attack, where it came from, what rule the firewall employed to deal with it, and so on. We employ a combination of commercial and custom rules in order to ensure that ModSecurity will block as many threats as possible, consequently improving the security of your web applications as much as possible.
ModSecurity in Dedicated Servers Hosting
All of our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any program that you upload or install will be secured from the very beginning and you won't need to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you shall find in the logs shall help you to secure your websites better - the IP address an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, etcetera. With this information, you'll be able to see if a site needs an update, whether you need to block IPs from accessing your server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our admins add custom ones as well whenever they discover a new threat that is not yet in the commercial bundle.