ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to stop attacks toward script-driven websites by employing security rules that contain certain expressions. This way, the firewall can stop hacking and spamming attempts and shield even Internet sites which aren't updated often. For example, multiple unsuccessful login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script will trigger specific rules, so ModSecurity shall block these activities the second it identifies them. The firewall is extremely efficient since it tracks the entire HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any harm is done. It furthermore keeps an incredibly detailed log of all attack attempts that includes more info than standard Apache logs, so you can later examine the data and take extra measures to increase the security of your Internet sites if necessary.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting plans that we offer and it will be switched on automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could activate and disable it with simply a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites shall include detailed information such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules we use are frequently updated and consist of both commercial ones we get from a third-party security company and custom ones that our system administrators include in case that they detect a new sort of attacks. In this way, the Internet sites which you host here shall be a lot more protected with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

Any web app which you install within your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall is included with all our hosting solutions and is activated by default for any domain and subdomain you include or create via your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section in Hepsia where not simply can you activate or deactivate it entirely, but you could also enable a passive mode, so the firewall will not stop anything, but it shall still keep an archive of potential attacks. This requires simply a click and you will be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall uses two sets of rules on our servers - a commercial one that we get from a third-party web security provider and a custom one that our administrators update manually in order to respond to recently discovered threats at the earliest opportunity.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web programs shall be secured from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if necessary, you can deactivate it with a mouse click from the corresponding section of Hepsia. You may also set it to work in detection mode, so it will keep a detailed log of any potential attacks without taking any action to stop them. The logs can be found in the very same section and provide info about the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For optimum security, we employ not simply commercial rules from a company working in the field of web security, but also custom ones that our administrators include manually so as to respond to new risks which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers Hosting

ModSecurity is provided as standard with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain you create on the server. In case that a web app does not work adequately, you can either turn off the firewall or set it to operate in passive mode. The second means that ModSecurity shall maintain a log of any potential attack that might happen, but shall not take any action to stop it. The logs generated in passive or active mode shall give you additional details about the exact file which was attacked, the nature of the attack and the IP it originated from, etc. This information will permit you to determine what actions you can take to boost the protection of your websites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules which we employ are updated constantly with a commercial bundle from a third-party security firm we work with, but sometimes our staff add their own rules as well when they discover a new potential threat.