ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is used to prevent attacks towards script-driven sites by using security rules that contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and preserve even Internet sites that are not updated frequently. For example, numerous failed login attempts to a script administrator area or attempts to execute a certain file with the intention to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the minute it detects them. The firewall is extremely efficient as it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It also maintains an incredibly comprehensive log of all attack attempts which includes more info than conventional Apache logs, so you could later check out the data and take extra measures to improve the security of your Internet sites if required.

ModSecurity in Shared Hosting

ModSecurity is available with each shared hosting plan that we offer and it is activated by default for every domain or subdomain which you include through your Hepsia CP. In case it disrupts any of your apps or you'd like to disable it for some reason, you shall be able to do that through the ModSecurity section of Hepsia with simply a click. You could also enable a passive mode, so the firewall will identify possible attacks and maintain a log, but will not take any action. You'll be able to view detailed logs in the exact same section, including the IP address where the attack came from, exactly what the attacker aimed to do and at what time, what ModSecurity did, and so on. For max protection of our customers we use a set of commercial firewall rules blended with custom ones which are added by our system admins.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans that we offer come with ModSecurity and given that the firewall is turned on by default, any site which you build under a domain or a subdomain will be secured right from the start. A separate section within the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it will permit you to stop and start the firewall for any website or enable a detection mode. With the latter, ModSecurity shall not take any action, but it shall still identify possible attacks and shall keep all data within a log as if it were 100% active. The logs could be found within the very same section of the Control Panel and they include specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, etcetera. The security rules which we use on our servers are a mix between commercial ones from a security company and custom ones created by our system admins. For that reason, we provide higher security for your web programs as we can defend them from attacks even before security firms release updates for completely new threats.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers we offer and it shall be activated automatically for every new domain or subdomain which you add on the machine. This way, any web application that you install shall be protected right away without doing anything manually on your end. The firewall can be managed via the section of the CP that has the same name. This is the location in whichyou could disable ModSecurity or activate its passive mode, so it won't take any action against threats, but will still maintain a detailed log. The recorded info is available within the same section as well and you shall be able to see what IPs any attacks originated from to enable you to block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules that we employ on our servers are a mix between commercial ones which we obtain from a security organization and custom ones that are added by our admins to enhance the security of any web applications hosted on our end.

ModSecurity in Dedicated Servers

All of our dedicated servers which are set up with the Hepsia hosting CP come with ModSecurity, so any program you upload or install shall be properly secured from the very beginning and you won't have to worry about common attacks or vulnerabilities. An individual section within Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information about intrusions, but doesn't take actions to prevent them. What you'll find in the logs shall help you to secure your sites better - the IP address an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you'll be able to see if an Internet site needs an update, whether you ought to block IPs from accessing your web server, and so forth. Besides the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well if they find a new threat that is not yet included in the commercial bundle.