ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It's employed to prevent attacks toward script-driven sites by using security rules that contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and shield even sites which are not updated frequently. As an example, several failed login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script shall trigger specific rules, so ModSecurity shall block these activities the moment it discovers them. The firewall is quite efficient as it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any damage is done. It also keeps an incredibly thorough log of all attack attempts which features more information than conventional Apache logs, so you can later check out the data and take additional measures to improve the security of your sites if necessary.

ModSecurity in Cloud Web Hosting

We offer ModSecurity with all cloud web hosting solutions, so your web applications shall be resistant to malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you will be able to stop it via the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you'll find within Hepsia are very detailed and feature data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, and so forth. We use a set of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting packages and if you decide to host your sites with our company, there won't be anything special you'll need to do since the firewall is turned on by default for all domains and subdomains you include using your hosting Control Panel. If required, you could disable ModSecurity for a certain site or switch on the so-called detection mode in which case the firewall will still work and record information, but will not do anything to stop potential attacks against your Internet sites. Thorough logs shall be available inside your Control Panel and you shall be able to see what type of attacks took place, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so forth. We use two types of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones which our admins sometimes include to respond to newly identified risks in a timely manner.

ModSecurity in VPS

Safety is essential to us, so we set up ModSecurity on all virtual private servers that are provided with the Hepsia CP as a standard. The firewall could be managed via a dedicated section within Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you'll not need to do anything by hand. You will also be able to disable it or activate the so-called detection mode, so it'll keep a log of possible attacks that you can later analyze, but will not stop them. The logs in both passive and active modes contain information regarding the form of the attack and how it was prevented, what IP address it originated from and other important data that might help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Besides the commercial rules that we get for ModSecurity from a third-party security enterprise, we also use our own rules because from time to time we identify specific attacks that aren't yet present inside the commercial group. That way, we can easily improve the security of your VPS immediately rather than awaiting a certified update.

ModSecurity in Dedicated Hosting

If you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured immediately as ModSecurity is supplied with all Hepsia-based solutions. You shall be able to regulate the firewall easily and if needed, you'll be able to turn it off or enable its passive mode when it shall only keep a log of what's occurring without taking any action to stop possible attacks. The logs that you will find inside the same section of the Control Panel are extremely detailed and contain data about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, etcetera. This data shall enable you to take measures and boost the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our administrators include every time they detect attacks which haven't yet been included in the commercial pack.