ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to prevent attacks towards script-driven sites through the use of security rules that contain particular expressions. That way, the firewall can prevent hacking and spamming attempts and shield even Internet sites which aren't updated on a regular basis. For instance, numerous failed login attempts to a script admin area or attempts to execute a certain file with the intention to get access to the script will trigger certain rules, so ModSecurity shall block these activities the second it identifies them. The firewall is extremely efficient as it monitors the whole HTTP traffic to a website in real time without slowing it down, so it could stop an attack before any harm is done. It also keeps an incredibly comprehensive log of all attack attempts which contains more info than conventional Apache logs, so you could later examine the data and take additional measures to enhance the security of your websites if required.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting packages, so your web apps will be protected against malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective part of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you'll find within Hepsia are incredibly detailed and offer info about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, and so forth. We employ a group of commercial rules which are often updated, but sometimes our administrators add custom rules as well so as to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

Any web app which you set up in your new semi-dedicated hosting account will be protected by ModSecurity as the firewall is provided with all our hosting solutions and is switched on by default for any domain and subdomain that you include or create using your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated area within Hepsia where not simply can you activate or deactivate it fully, but you may also switch on a passive mode, so the firewall won't stop anything, but it shall still keep a record of potential attacks. This normally requires simply a mouse click and you will be able to see the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, etcetera. The firewall employs 2 sets of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one that our admins update manually in order to respond to newly discovered risks at the earliest opportunity.

ModSecurity in VPS Web Hosting

ModSecurity is included with all Hepsia-based virtual private servers that we offer and it shall be activated automatically for any new domain or subdomain which you include on the hosting server. In this way, any web app which you install will be secured from the very beginning without doing anything by hand on your end. The firewall could be managed via the section of the CP which has the same name. This is the place in whichyou could disable ModSecurity or activate its passive mode, so it won't take any action toward threats, but shall still maintain a detailed log. The recorded data is available inside the same section as well and you will be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules that we employ on our servers are a mixture between commercial ones that we obtain from a security organization and custom ones which are added by our staff to maximize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers Hosting

When you opt to host your Internet sites on a dedicated server with the Hepsia CP, your web apps will be protected right from the start as ModSecurity is available with all Hepsia-based plans. You shall be able to regulate the firewall with ease and if needed, you will be able to turn it off or activate its passive mode when it shall only keep a log of what is going on without taking any action to stop potential attacks. The logs which you'll find inside the exact same section of the CP are quite detailed and include info about the attacker IP, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, and so forth. This data shall allow you to take measures and enhance the protection of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our staff include when they detect attacks which have not yet been included within the commercial pack.