ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It's used to stop attacks against script-driven Internet sites by employing security rules that contain specific expressions. In this way, the firewall can prevent hacking and spamming attempts and protect even websites which aren't updated on a regular basis. For instance, numerous unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the purpose to get access to the script will trigger certain rules, so ModSecurity will stop these activities the second it discovers them. The firewall is incredibly efficient since it screens the whole HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any damage is done. It also maintains an incredibly comprehensive log of all attack attempts that contains more info than traditional Apache logs, so you can later analyze the data and take additional measures to enhance the security of your sites if needed.

ModSecurity in Shared Hosting

ModSecurity is provided with all shared hosting web servers, so when you opt to host your sites with our business, they shall be protected against an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you shall need to do on your end. You'll be able to stop ModSecurity for any website if required, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You'll be able to view detailed logs using your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the safety of our clients' sites very seriously, we employ a selection of commercial rules which we get from one of the top firms that maintain this sort of rules. Our administrators also add custom rules to make certain that your Internet sites shall be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

Any web app you install in your new semi-dedicated hosting account will be protected by ModSecurity since the firewall is included with all our hosting solutions and is activated by default for any domain and subdomain you include or create via your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated area inside Hepsia where not simply could you activate or deactivate it fully, but you may also enable a passive mode, so the firewall will not block anything, but it'll still maintain a record of possible attacks. This normally requires simply a mouse click and you'll be able to see the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was dealt with, and so on. The firewall employs 2 sets of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one which our admins update personally as to respond to newly discovered risks as fast as possible.

ModSecurity in Dedicated Servers Hosting

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia CP and you'll not have to do anything specific on your end to employ it because it's enabled by default every time you include a new domain or subdomain on your server. In case it interferes with some of your programs, you'll be able to stop it via the respective area of Hepsia, or you can leave it operating in passive mode, so it shall detect attacks and shall still keep a log for them, but won't stop them. You could look at the logs later to find out what you can do to enhance the safety of your Internet sites as you'll find information such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, and so forth. The rules which we use are commercial, hence they're constantly updated by a security firm, but to be on the safe side, our staff also include custom rules every now and then in order to react to any new threats they have found.