ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's used to prevent attacks toward script-driven Internet sites through the use of security rules that contain specific expressions. That way, the firewall can prevent hacking and spamming attempts and protect even websites that are not updated often. For example, several unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script will trigger specific rules, so ModSecurity shall block these activities the moment it detects them. The firewall is very efficient since it screens the entire HTTP traffic to a site in real time without slowing it down, so it can prevent an attack before any harm is done. It also keeps an incredibly comprehensive log of all attack attempts which includes more info than standard Apache logs, so you could later analyze the data and take extra measures to increase the security of your websites if needed.

ModSecurity in Cloud Hosting

ModSecurity is supplied with all cloud hosting servers, so if you opt to host your Internet sites with our organization, they'll be resistant to an array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you'll have to do on your end. You'll be able to stop ModSecurity for any Internet site if required, or to activate a detection mode, so all activity will be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs using your Hepsia Control Panel including the IP where the attack originated from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the safety of our customers' Internet sites very seriously, we use a collection of commercial rules that we get from one of the top firms that maintain such rules. Our administrators also add custom rules to make sure that your Internet sites shall be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you choose to host your Internet sites with us, there won't be anything special you'll have to do given that the firewall is switched on by default for all domains and subdomains that you include using your hosting CP. If needed, you can disable ModSecurity for a certain site or activate the so-called detection mode in which case the firewall will still operate and record info, but won't do anything to stop potential attacks on your Internet sites. Comprehensive logs shall be accessible inside your Control Panel and you shall be able to see which kind of attacks took place, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so forth. We employ two sorts of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom ones which our admins occasionally include to respond to newly found risks on time.

ModSecurity in VPS Servers

Safety is essential to us, so we install ModSecurity on all VPS servers which are made available with the Hepsia CP by default. The firewall can be managed via a dedicated section inside Hepsia and is activated automatically when you include a new domain or create a subdomain, so you will not have to do anything manually. You shall also be able to deactivate it or turn on the so-called detection mode, so it shall keep a log of possible attacks that you can later analyze, but won't block them. The logs in both passive and active modes contain information about the form of the attack and how it was eliminated, what IP it originated from and other useful data which could help you to tighten the security of your sites by updating them or blocking IPs, for example. In addition to the commercial rules which we get for ModSecurity from a third-party security firm, we also employ our own rules as every now and then we discover specific attacks that aren't yet present inside the commercial pack. This way, we can easily increase the protection of your Virtual private server promptly instead of awaiting a certified update.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it as it's turned on by default each time you include a new domain or subdomain on your server. If it disrupts some of your apps, you will be able to stop it through the respective area of Hepsia, or you could leave it in passive mode, so it shall recognize attacks and shall still maintain a log for them, but will not block them. You can analyze the logs later to learn what you can do to boost the security of your sites as you shall find details such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, and so on. The rules that we employ are commercial, thus they're constantly updated by a security provider, but to be on the safe side, our staff also include custom rules from time to time in order to react to any new threats they have discovered.