ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It is used to stop attacks against script-driven sites by using security rules which contain specific expressions. This way, the firewall can prevent hacking and spamming attempts and preserve even Internet sites which are not updated regularly. For example, a number of failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script will trigger specific rules, so ModSecurity will block out these activities the minute it detects them. The firewall is incredibly efficient because it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally maintains a very comprehensive log of all attack attempts which includes more information than typical Apache logs, so you could later analyze the data and take additional measures to improve the security of your Internet sites if necessary.

ModSecurity in Shared Web Hosting

We offer ModSecurity with all shared web hosting plans, so your web applications shall be protected against malicious attacks. The firewall is switched on as standard for all domains and subdomains, but if you would like, you will be able to stop it via the respective section of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you'll find within Hepsia are incredibly detailed and feature info about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, etc. We employ a set of commercial rules which are frequently updated, but sometimes our admins add custom rules as well in order to better protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions which we offer come with ModSecurity and since the firewall is switched on by default, any Internet site which you set up under a domain or a subdomain will be protected right from the start. A separate section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll enable you to stop and start the firewall for any website or enable a detection mode. With the latter, ModSecurity won't take any action, but it shall still recognize possible attacks and will keep all info in a log as if it were fully active. The logs can be found inside the very same section of the CP and they offer info about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules which we use on our web servers are a mix between commercial ones from a security business and custom ones made by our system admins. For that reason, we offer higher security for your web apps as we can protect them from attacks before security companies release updates for new threats.

ModSecurity in VPS Web Hosting

All virtual private servers that are set up with the Hepsia CP include ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the server, so there shall not be anything special that you will have to do to protect your Internet sites. It will take you just a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what happens without taking any actions to stop intrusions. You will be able to see the logs created in active or passive mode from the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to take care of it, etc. We employ a mix of commercial and custom rules in order to make certain that ModSecurity will prevent as many threats as possible, thus enhancing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers Hosting

ModSecurity comes with all dedicated servers which are set up with our Hepsia Control Panel and you will not have to do anything specific on your end to employ it because it's switched on by default whenever you include a new domain or subdomain on your web server. In the event that it interferes with any of your apps, you will be able to stop it via the respective section of Hepsia, or you could leave it in passive mode, so it will identify attacks and will still keep a log for them, but won't stop them. You could examine the logs later to learn what you can do to increase the protection of your sites as you will find info such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity reacted, etcetera. The rules which we employ are commercial, thus they are constantly updated by a security firm, but to be on the safe side, our staff also include custom rules occasionally in order to react to any new threats they have found.