ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to prevent attacks toward script-driven Internet sites by using security rules that contain particular expressions. That way, the firewall can block hacking and spamming attempts and preserve even Internet sites which aren't updated regularly. For instance, several failed login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script shall trigger particular rules, so ModSecurity will block these activities the minute it discovers them. The firewall is quite efficient as it screens the entire HTTP traffic to a website in real time without slowing it down, so it can easily prevent an attack before any harm is done. It furthermore maintains an incredibly comprehensive log of all attack attempts which features more info than conventional Apache logs, so you can later check out the data and take additional measures to enhance the security of your websites if needed.

ModSecurity in Website Hosting

ModSecurity comes by default with all website hosting packages that we supply and it will be switched on automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and disable it with a click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to stop them. The log for any of your Internet sites will contain elaborate information such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules we use are frequently updated and comprise of both commercial ones that we get from a third-party security firm and custom ones our system administrators add in the event that they detect a new type of attacks. That way, the websites you host here will be far more protected without any action expected on your end.

ModSecurity in Semi-dedicated Servers

We have included ModSecurity by default in all semi-dedicated server packages, so your web apps will be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will allow you to enable or disable the firewall for any Internet site with a mouse click. You shall also be able to turn on a passive detection mode through which ModSecurity will maintain a log of potential attacks without really stopping them. The thorough logs include the nature of the attack and what ModSecurity response that attack initiated, where it came from, etc. The list of rules we employ is constantly updated as to match any new threats which may appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones that our admins add in the event that they find a threat which is not present within the commercial list yet.

ModSecurity in Dedicated Servers

If you opt to host your websites on a dedicated server with the Hepsia Control Panel, your web applications will be secured right from the start as ModSecurity is available with all Hepsia-based packages. You'll be able to manage the firewall effortlessly and if needed, you'll be able to turn it off or enable its passive mode when it will only keep a log of what's happening without taking any action to prevent potential attacks. The logs which you will find inside the very same section of the CP are incredibly detailed and feature info about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so forth. This info shall enable you to take measures and improve the protection of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff add when they identify attacks that haven't yet been included in the commercial pack.