ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to stop attacks towards script-driven Internet sites by using security rules which contain specific expressions. That way, the firewall can prevent hacking and spamming attempts and shield even sites which aren't updated regularly. For instance, a number of unsuccessful login attempts to a script admin area or attempts to execute a particular file with the intention to get access to the script shall trigger specific rules, so ModSecurity will stop these activities the second it identifies them. The firewall is incredibly efficient as it tracks the entire HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any harm is done. It also keeps a very comprehensive log of all attack attempts which features more info than traditional Apache logs, so you could later check out the data and take extra measures to boost the security of your sites if required.

ModSecurity in Cloud Hosting

ModSecurity is available on all cloud hosting machines, so when you opt to host your Internet sites with our company, they shall be shielded from a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there will be nothing you will have to do on your end. You'll be able to stop ModSecurity for any Internet site if needed, or to enable a detection mode, so all activity will be recorded, but the firewall won't take any real action. You will be able to view detailed logs from your Hepsia CP including the IP where the attack came from, what the attacker planned to do and how ModSecurity dealt with the threat. As we take the safety of our customers' Internet sites very seriously, we use a selection of commercial rules that we take from one of the best companies that maintain this type of rules. Our administrators also include custom rules to ensure that your sites will be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server plans and if you decide to host your websites with our company, there will not be anything special you'll need to do given that the firewall is turned on by default for all domains and subdomains you include through your hosting Control Panel. If required, you could disable ModSecurity for a given website or switch on the so-called detection mode in which case the firewall shall still operate and record data, but will not do anything to stop possible attacks against your websites. Detailed logs shall be readily available in your Control Panel and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, etcetera. We use two types of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones which our admins sometimes include to respond to newly discovered threats in a timely manner.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are provided with the Hepsia hosting CP, so your web applications shall be protected from the second your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you'll be able to deactivate it with a click via the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall keep a detailed log of any potential attacks without taking any action to stop them. The logs are available in the exact same section and include info about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For maximum security, we employ not simply commercial rules from a company working in the field of web security, but also custom ones that our administrators add manually in order to react to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it because it is switched on by default every time you include a new domain or subdomain on your server. In case it disrupts any of your applications, you will be able to stop it via the respective part of Hepsia, or you may leave it working in passive mode, so it will detect attacks and shall still maintain a log for them, but will not block them. You could look at the logs later to learn what you can do to boost the security of your websites as you shall find details such as where an intrusion attempt originated from, what website was attacked and based on what rule ModSecurity reacted, and so forth. The rules that we employ are commercial, therefore they're regularly updated by a security firm, but to be on the safe side, our admins also add custom rules every now and then as to deal with any new threats they have found.