ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's used to prevent attacks against script-driven sites by employing security rules which contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and protect even Internet sites which are not updated regularly. For instance, multiple failed login attempts to a script administrator area or attempts to execute a particular file with the objective to get access to the script will trigger certain rules, so ModSecurity shall stop these activities the second it discovers them. The firewall is incredibly efficient as it screens the whole HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any damage is done. It additionally maintains an exceptionally thorough log of all attack attempts that includes more information than conventional Apache logs, so you can later examine the data and take further measures to boost the security of your Internet sites if necessary.

ModSecurity in Shared Hosting

ModSecurity is supplied with all shared hosting servers, so if you decide to host your sites with our company, they'll be protected against an array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you shall need to do on your end. You will be able to stop ModSecurity for any site if needed, or to enable a detection mode, so all activity will be recorded, but the firewall will not take any real action. You will be able to view detailed logs via your Hepsia CP including the IP address where the attack came from, what the attacker wished to do and how ModSecurity handled the threat. As we take the protection of our clients' websites seriously, we use a set of commercial rules which we take from one of the best firms that maintain this kind of rules. Our administrators also include custom rules to make certain that your sites will be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity as a standard inside all semi-dedicated hosting packages, so your web applications will be protected the instant you set them up under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will permit you to enable or disable the firewall for any website with a mouse click. You'll also be able to switch on a passive detection mode through which ModSecurity shall keep a log of potential attacks without really preventing them. The detailed logs include the nature of the attack and what ModSecurity response that attack activated, where it originated from, etc. The list of rules we use is constantly updated as to match any new threats that may appear on the Internet and it features both commercial rules that we get from a security business and custom-written ones that our administrators add if they find a threat which is not present in the commercial list yet.

ModSecurity in VPS

All virtual private servers that are offered with the Hepsia Control Panel come with ModSecurity. The firewall is set up and turned on by default for all domains that are hosted on the machine, so there won't be anything special that you'll have to do to protect your Internet sites. It'll take you just a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what occurs without taking any measures to prevent intrusions. You shall be able to look at the logs produced in passive or active mode through the corresponding section of Hepsia and learn more about the type of the attack, where it came from, what rule the firewall employed to deal with it, etc. We use a mix of commercial and custom rules in order to ensure that ModSecurity will stop as many risks as possible, hence increasing the protection of your web apps as much as possible.

ModSecurity in Dedicated Hosting

All our dedicated servers which are installed with the Hepsia hosting CP include ModSecurity, so any program which you upload or set up will be protected from the very beginning and you won't have to worry about common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you will find in the logs can easily help you to secure your sites better - the IP address an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this data, you'll be able to see whether a site needs an update, whether you should block IPs from accessing your web server, etcetera. Besides the third-party commercial security rules for ModSecurity we use, our administrators add custom ones too when they find a new threat that's not yet a part of the commercial bundle.