ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's employed to prevent attacks toward script-driven websites by using security rules that contain specific expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even Internet sites which aren't updated regularly. As an example, several unsuccessful login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script shall trigger certain rules, so ModSecurity shall block out these activities the moment it identifies them. The firewall is quite efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It additionally maintains a very comprehensive log of all attack attempts that features more information than conventional Apache logs, so you could later check out the data and take additional measures to enhance the security of your sites if needed.

ModSecurity in Shared Website Hosting

ModSecurity comes standard with all shared website hosting solutions which we provide and it shall be switched on automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and deactivate it with only a mouse click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to prevent them. The log for any of your sites will feature elaborate information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are regularly updated and incorporate both commercial ones we get from a third-party security company and custom ones our system administrators include in case that they detect a new sort of attacks. In this way, the Internet sites that you host here shall be much more secure with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity by default inside all semi-dedicated hosting packages, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts shall permit you to enable or turn off the firewall for any website with a click. You'll also have the ability to turn on a passive detection mode with which ModSecurity shall maintain a log of possible attacks without actually stopping them. The detailed logs include the nature of the attack and what ModSecurity response that attack initiated, where it came from, and so forth. The list of rules which we use is frequently updated as to match any new risks that might appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones that our admins include in case they find a threat that is not present inside the commercial list yet.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are offered with the Hepsia hosting CP, so your web apps shall be secured from the instant your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you could disable it with a click of your mouse from the corresponding section of Hepsia. You could also set it to work in detection mode, so it shall keep a detailed log of any potential attacks without taking any action to prevent them. The logs are available in the exact same section and offer details about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones that our administrators add personally so as to react to new risks which are still not addressed in the commercial rules.

ModSecurity in Dedicated Hosting

ModSecurity is offered as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain you create on the hosting server. In the event that a web application does not work correctly, you may either switch off the firewall or set it to operate in passive mode. The latter means that ModSecurity shall maintain a log of any possible attack that may happen, but shall not take any action to stop it. The logs produced in passive or active mode will present you with more details about the exact file that was attacked, the form of the attack and the IP it came from, etcetera. This data will allow you to choose what actions you can take to boost the security of your sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules that we use are updated constantly with a commercial bundle from a third-party security provider we work with, but occasionally our administrators add their own rules also if they discover a new potential threat.