ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to prevent attacks against script-driven sites by using security rules that contain specific expressions. That way, the firewall can prevent hacking and spamming attempts and preserve even websites which aren't updated frequently. For instance, a number of failed login attempts to a script administrator area or attempts to execute a certain file with the purpose to get access to the script shall trigger particular rules, so ModSecurity shall block these activities the second it discovers them. The firewall is incredibly efficient since it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it could prevent an attack before any damage is done. It furthermore keeps an incredibly detailed log of all attack attempts that features more information than standard Apache logs, so you could later examine the data and take additional measures to boost the security of your Internet sites if needed.

ModSecurity in Cloud Website Hosting

ModSecurity is available on all cloud website hosting web servers, so if you choose to host your websites with our organization, they will be resistant to a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you will need to do on your end. You will be able to stop ModSecurity for any site if needed, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs from your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the protection of our clients' Internet sites very seriously, we employ a collection of commercial rules that we get from one of the leading companies that maintain such rules. Our admins also add custom rules to make certain that your Internet sites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

We have integrated ModSecurity as a standard within all semi-dedicated server packages, so your web applications will be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to switch on or disable the firewall for any site with a mouse click. You'll also be able to activate a passive detection mode in which ModSecurity shall keep a log of potential attacks without really preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack generated, where it came from, and so on. The list of rules that we use is frequently updated as to match any new risks which may appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones which our administrators include if they discover a threat that's not present within the commercial list yet.

ModSecurity in VPS Servers

All VPS servers that are offered with the Hepsia CP include ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the server, so there won't be anything special that you will have to do to protect your Internet sites. It will take you simply a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what goes on without taking any steps to stop intrusions. You will be able to see the logs generated in active or passive mode via the corresponding section of Hepsia and learn more about the type of the attack, where it originated from, what rule the firewall used to take care of it, and so forth. We employ a mixture of commercial and custom rules in order to make sure that ModSecurity will block as many risks as possible, thus increasing the protection of your web apps as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is available by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain that you create on the web server. In case that a web application doesn't work adequately, you could either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity shall keep a log of any potential attack which may take place, but won't take any action to prevent it. The logs created in active or passive mode shall provide you with more details about the exact file that was attacked, the nature of the attack and the IP address it originated from, etcetera. This information will enable you to decide what measures you can take to enhance the protection of your Internet sites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules which we use are updated constantly with a commercial pack from a third-party security provider we work with, but oftentimes our admins add their own rules also in the event that they identify a new potential threat.