ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to stop attacks against script-driven websites by employing security rules that contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and protect even websites that are not updated on a regular basis. For example, multiple failed login attempts to a script administrative area or attempts to execute a certain file with the objective to get access to the script shall trigger particular rules, so ModSecurity shall block out these activities the minute it discovers them. The firewall is incredibly efficient because it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally maintains an incredibly thorough log of all attack attempts which includes more information than standard Apache logs, so you can later check out the data and take additional measures to increase the security of your Internet sites if necessary.

ModSecurity in Shared Web Hosting

We provide ModSecurity with all shared web hosting solutions, so your web applications shall be resistant to harmful attacks. The firewall is switched on by default for all domains and subdomains, but in case you'd like, you will be able to stop it via the respective part of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you shall find within Hepsia are quite detailed and offer data about the nature of any attack, when it took place and from what IP address, the firewall rule which was triggered, etc. We employ a set of commercial rules that are constantly updated, but sometimes our admins add custom rules as well so as to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity by default within all semi-dedicated hosting products, so your web apps will be protected the instant you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will permit you to switch on or disable the firewall for any site with a click. You shall also have the ability to switch on a passive detection mode through which ModSecurity will maintain a log of potential attacks without really stopping them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack activated, where it came from, and so on. The list of rules we use is constantly updated in order to match any new risks that might appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones that our admins include if they find a threat that is not present in the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is included with all Hepsia-based virtual private servers which we offer and it'll be switched on automatically for every new domain or subdomain which you include on the machine. That way, any web app you install will be protected immediately without doing anything manually on your end. The firewall may be handled through the section of the CP which bears the same name. This is the area whereyou could switch off ModSecurity or activate its passive mode, so it shall not take any action against threats, but will still maintain a detailed log. The recorded info is available in the same section as well and you'll be able to see what IPs any attacks originated from to enable you to block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we employ on our servers are a mixture between commercial ones that we obtain from a security organization and custom ones that are included by our admins to enhance the security of any web applications hosted on our end.

ModSecurity in Dedicated Servers Hosting

If you decide to host your sites on a dedicated server with the Hepsia CP, your web programs shall be protected immediately since ModSecurity is available with all Hepsia-based solutions. You shall be able to regulate the firewall with ease and if necessary, you will be able to turn it off or switch on its passive mode when it'll only keep a log of what is taking place without taking any action to prevent possible attacks. The logs which you'll find inside the exact same section of the Control Panel are really detailed and include details about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so forth. This information will permit you to take measures and improve the protection of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our administrators add whenever they recognize attacks that haven't yet been included in the commercial pack.