ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is employed to prevent attacks towards script-driven websites through the use of security rules which contain certain expressions. In this way, the firewall can stop hacking and spamming attempts and shield even sites that aren't updated on a regular basis. For instance, numerous failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script shall trigger particular rules, so ModSecurity will block these activities the second it detects them. The firewall is very efficient because it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any damage is done. It also maintains an exceptionally comprehensive log of all attack attempts which features more info than standard Apache logs, so you can later check out the data and take extra measures to boost the security of your websites if necessary.

ModSecurity in Shared Website Hosting

ModSecurity is available on all shared website hosting machines, so if you decide to host your websites with our company, they'll be shielded from a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you'll have to do on your end. You will be able to stop ModSecurity for any website if needed, or to enable a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You'll be able to view detailed logs using your Hepsia Control Panel including the IP where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the security of our clients' websites seriously, we employ a selection of commercial rules that we take from one of the best firms that maintain this type of rules. Our admins also add custom rules to ensure that your Internet sites shall be protected against as many risks as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you decide to host your sites with us, there won't be anything special you will have to do as the firewall is switched on by default for all domains and subdomains which you add via your hosting Control Panel. If needed, you'll be able to disable ModSecurity for a certain website or activate the so-called detection mode in which case the firewall will still work and record information, but shall not do anything to prevent potential attacks against your Internet sites. Comprehensive logs shall be readily available inside your Control Panel and you'll be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, etc. We employ two sorts of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones which our administrators sometimes add to respond to newly discovered threats on time.

ModSecurity in VPS Servers

ModSecurity is provided with all Hepsia-based VPS servers we offer and it'll be activated automatically for every new domain or subdomain you include on the web server. This way, any web app which you install will be secured from the very beginning without doing anything personally on your end. The firewall could be handled through the section of the Control Panel that bears the same name. This is the place in whichyou could switch off ModSecurity or let its passive mode, so it won't take any action towards threats, but shall still keep a comprehensive log. The recorded information is available in the same area as well and you shall be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules which we employ on our servers are a mix between commercial ones which we get from a security firm and custom ones that are included by our admins to optimize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is available by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain you create on the hosting server. Just in case that a web application does not operate adequately, you can either turn off the firewall or set it to operate in passive mode. The second means that ModSecurity shall maintain a log of any possible attack that may occur, but will not take any action to prevent it. The logs generated in active or passive mode shall provide you with additional details about the exact file that was attacked, the form of the attack and the IP it came from, and so on. This data will enable you to choose what measures you can take to boost the safety of your sites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules we employ are updated constantly with a commercial bundle from a third-party security firm we work with, but sometimes our staff add their own rules too in case they discover a new potential threat.