ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to prevent attacks towards script-driven websites by employing security rules which contain specific expressions. This way, the firewall can prevent hacking and spamming attempts and preserve even websites which aren't updated on a regular basis. For instance, a number of unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script shall trigger certain rules, so ModSecurity shall block out these activities the minute it identifies them. The firewall is quite efficient because it tracks the whole HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It furthermore maintains an incredibly thorough log of all attack attempts that contains more information than typical Apache logs, so you can later examine the data and take extra measures to boost the security of your Internet sites if required.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting plans which we supply and it will be switched on automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with a click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for each of your websites will feature detailed information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are regularly updated and include both commercial ones that we get from a third-party security business and custom ones that our system admins include in case that they detect a new sort of attacks. That way, the sites you host here will be much more protected without any action expected on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages that we offer come with ModSecurity and since the firewall is turned on by default, any site which you set up under a domain or a subdomain will be secured right away. An individual section within the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall allow you to stop and start the firewall for any website or enable a detection mode. With the last option, ModSecurity will not take any action, but it'll still recognize possible attacks and shall keep all info inside a log as if it were 100% active. The logs could be found in the very same section of the Control Panel and they include information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules we use on our machines are a mix between commercial ones from a security business and custom ones made by our system administrators. For that reason, we offer increased security for your web applications as we can shield them from attacks before security companies release updates for new threats.

ModSecurity in VPS Web Hosting

All virtual private servers that are set up with the Hepsia CP come with ModSecurity. The firewall is set up and turned on by default for all domains that are hosted on the machine, so there will not be anything special that you'll have to do to protect your Internet sites. It'll take you just a click to stop ModSecurity if needed or to turn on its passive mode so that it records what occurs without taking any steps to stop intrusions. You'll be able to see the logs generated in passive or active mode via the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall employed to take care of it, etc. We employ a combination of commercial and custom rules in order to make certain that ModSecurity will prevent as many threats as possible, consequently boosting the security of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

ModSecurity is provided by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain that you create on the server. Just in case that a web application doesn't function correctly, you may either disable the firewall or set it to function in passive mode. The second means that ModSecurity will keep a log of any potential attack which may happen, but won't take any action to prevent it. The logs generated in passive or active mode shall offer you additional details about the exact file which was attacked, the type of the attack and the IP address it came from, etc. This info shall enable you to decide what steps you can take to increase the protection of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules that we use are updated regularly with a commercial pack from a third-party security firm we work with, but from time to time our admins include their own rules as well when they find a new potential threat.