ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It is used to prevent attacks towards script-driven sites through the use of security rules which contain certain expressions. This way, the firewall can block hacking and spamming attempts and shield even Internet sites which aren't updated frequently. For instance, multiple unsuccessful login attempts to a script admin area or attempts to execute a certain file with the intention to get access to the script will trigger particular rules, so ModSecurity shall stop these activities the moment it detects them. The firewall is extremely efficient as it screens the whole HTTP traffic to a website in real time without slowing it down, so it can easily prevent an attack before any damage is done. It also keeps a very thorough log of all attack attempts which contains more information than typical Apache logs, so you can later check out the data and take further measures to increase the security of your Internet sites if needed.

ModSecurity in Hosting

ModSecurity is supplied with all hosting servers, so if you opt to host your websites with our firm, they shall be protected against a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you'll need to do on your end. You'll be able to stop ModSecurity for any Internet site if required, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You'll be able to view detailed logs through your Hepsia Control Panel including the IP where the attack originated from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the protection of our customers' Internet sites very seriously, we employ a collection of commercial rules that we get from one of the best companies which maintain this type of rules. Our admins also include custom rules to make certain that your sites will be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages that we offer feature ModSecurity and because the firewall is switched on by default, any site you create under a domain or a subdomain shall be protected right from the start. An independent section inside the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll enable you to stop and start the firewall for any site or switch on a detection mode. With the last option, ModSecurity will not take any action, but it shall still detect possible attacks and will keep all data within a log as if it were completely active. The logs can be found in the very same section of the Control Panel and they include details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules that we employ on our machines are a mix of commercial ones from a security company and custom ones made by our system admins. As a result, we offer greater security for your web apps as we can protect them from attacks before security companies release updates for new threats.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting Control Panel, so your web programs shall be secured from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if required, you could deactivate it with a click of your mouse via the corresponding section of Hepsia. You can also set it to operate in detection mode, so it shall maintain an extensive log of any possible attacks without taking any action to prevent them. The logs are available within the same section and provide info about the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For optimum security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones that our administrators add manually in order to react to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia Control Panel and you will not have to do anything specific on your end to use it because it's enabled by default each time you include a new domain or subdomain on your web server. In the event that it interferes with some of your applications, you shall be able to stop it through the respective area of Hepsia, or you can leave it working in passive mode, so it will identify attacks and will still maintain a log for them, but will not block them. You may analyze the logs later to determine what you can do to enhance the security of your sites since you'll find information such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity responded, etc. The rules that we employ are commercial, therefore they're constantly updated by a security provider, but to be on the safe side, our staff also include custom rules once in a while in order to respond to any new threats they have discovered.