ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to stop attacks towards script-driven sites by using security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and protect even Internet sites that are not updated on a regular basis. For instance, multiple failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script will trigger particular rules, so ModSecurity will stop these activities the second it discovers them. The firewall is extremely efficient as it tracks the whole HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any damage is done. It furthermore maintains an exceptionally detailed log of all attack attempts which contains more info than standard Apache logs, so you could later check out the data and take additional measures to increase the security of your sites if required.
ModSecurity in Website Hosting
We provide ModSecurity with all website hosting solutions, so your Internet applications shall be resistant to destructive attacks. The firewall is activated as standard for all domains and subdomains, but in case you would like, you shall be able to stop it using the respective section of your Hepsia CP. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you shall discover within Hepsia are very detailed and feature data about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, and so forth. We use a range of commercial rules which are frequently updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server plans that we offer come with ModSecurity and because the firewall is enabled by default, any site that you set up under a domain or a subdomain shall be secured straight away. An individual section within the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it will enable you to start and stop the firewall for any Internet site or switch on a detection mode. With the last option, ModSecurity shall not take any action, but it shall still detect possible attacks and will keep all information inside a log as if it were completely active. The logs could be found inside the exact same section of the Control Panel and they offer details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules which we use on our machines are a mix of commercial ones from a security business and custom ones created by our system administrators. Therefore, we offer greater security for your web applications as we can protect them from attacks even before security firms release updates for brand new threats.
ModSecurity in VPS Servers
All VPS servers that are offered with the Hepsia Control Panel feature ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the machine, so there won't be anything special which you shall have to do to protect your websites. It'll take you only a click to stop ModSecurity if necessary or to switch on its passive mode so that it records what occurs without taking any measures to prevent intrusions. You shall be able to view the logs generated in active or passive mode through the corresponding section of Hepsia and learn more about the form of the attack, where it originated from, what rule the firewall employed to deal with it, etc. We employ a mixture of commercial and custom rules in order to make sure that ModSecurity shall prevent as many threats as possible, therefore boosting the protection of your web apps as much as possible.
ModSecurity in Dedicated Servers
All of our dedicated servers that are set up with the Hepsia hosting CP come with ModSecurity, so any application that you upload or set up will be properly secured from the very beginning and you will not need to worry about common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you shall find in the logs can allow you to to secure your Internet sites better - the IP address an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, etc. With this information, you'll be able to see if an Internet site needs an update, if you should block IPs from accessing your hosting server, etc. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too whenever they find a new threat that is not yet a part of the commercial bundle.