ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's used to prevent attacks against script-driven sites through the use of security rules that contain certain expressions. In this way, the firewall can stop hacking and spamming attempts and preserve even websites that are not updated on a regular basis. As an example, a number of unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script will trigger certain rules, so ModSecurity will stop these activities the second it identifies them. The firewall is incredibly efficient because it screens the entire HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any damage is done. It furthermore keeps an incredibly detailed log of all attack attempts which includes more information than standard Apache logs, so you could later examine the data and take extra measures to improve the security of your Internet sites if necessary.

ModSecurity in Cloud Web Hosting

ModSecurity is available with each and every cloud web hosting solution that we offer and it is switched on by default for any domain or subdomain which you include through your Hepsia CP. If it interferes with any of your apps or you'd like to disable it for whatever reason, you will be able to accomplish that through the ModSecurity section of Hepsia with merely a click. You can also enable a passive mode, so the firewall will identify possible attacks and maintain a log, but will not take any action. You could view detailed logs in the same section, including the IP address where the attack originated from, what precisely the attacker attempted to do and at what time, what ModSecurity did, and so forth. For max safety of our customers we use a collection of commercial firewall rules combined with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity as a standard in all semi-dedicated server packages, so your web apps shall be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts shall allow you to activate or disable the firewall for any website with a click. You'll also have the ability to switch on a passive detection mode through which ModSecurity shall maintain a log of possible attacks without really preventing them. The comprehensive logs include things like the nature of the attack and what ModSecurity response that attack initiated, where it originated from, and so on. The list of rules which we employ is constantly updated as to match any new threats which could appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones that our admins add in the event that they discover a threat that's not present inside the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting Control Panel, so your web applications shall be protected from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you can deactivate it with a click via the corresponding section of Hepsia. You could also set it to function in detection mode, so it will maintain a comprehensive log of any potential attacks without taking any action to stop them. The logs can be found in the same section and provide information regarding the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For maximum security, we use not simply commercial rules from a firm operating in the field of web security, but also custom ones our admins add personally in order to respond to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

If you choose to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps shall be protected right from the start as ModSecurity is provided with all Hepsia-based plans. You'll be able to manage the firewall with ease and if required, you'll be able to turn it off or activate its passive mode when it shall only keep a log of what is occurring without taking any action to stop potential attacks. The logs which you can find in the same section of the CP are extremely detailed and contain details about the attacker IP, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so on. This information will enable you to take measures and increase the protection of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our admins add whenever they recognize attacks which have not yet been included within the commercial pack.