ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is employed to prevent attacks towards script-driven sites by using security rules which contain certain expressions. That way, the firewall can block hacking and spamming attempts and preserve even sites that aren't updated on a regular basis. As an example, multiple failed login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script will trigger specific rules, so ModSecurity shall block out these activities the instant it detects them. The firewall is extremely efficient since it tracks the whole HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It additionally keeps an exceptionally comprehensive log of all attack attempts which features more information than traditional Apache logs, so you can later check out the data and take further measures to enhance the security of your Internet sites if required.

ModSecurity in Cloud Website Hosting

ModSecurity is available on all cloud website hosting servers, so if you choose to host your Internet sites with our business, they will be protected against an array of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any website if required, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You will be able to view specific logs using your Hepsia CP including the IP address where the attack came from, what the attacker planned to do and how ModSecurity dealt with the threat. Since we take the security of our clients' Internet sites seriously, we employ a group of commercial rules that we take from one of the leading firms that maintain this kind of rules. Our administrators also include custom rules to ensure that your Internet sites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

We've integrated ModSecurity by default within all semi-dedicated server packages, so your web apps shall be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to enable or turn off the firewall for any Internet site with a mouse click. You shall also be able to switch on a passive detection mode in which ModSecurity shall keep a log of potential attacks without really preventing them. The detailed logs contain the nature of the attack and what ModSecurity response that attack initiated, where it originated from, and so on. The list of rules that we use is frequently updated in order to match any new risks that may appear on the Internet and it includes both commercial rules that we get from a security corporation and custom-written ones that our admins include if they find a threat that's not present inside the commercial list yet.

ModSecurity in VPS Servers

Protection is vital to us, so we set up ModSecurity on all VPS servers which are provided with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section inside Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you won't have to do anything personally. You'll also be able to deactivate it or turn on the so-called detection mode, so it will maintain a log of possible attacks which you can later analyze, but will not prevent them. The logs in both passive and active modes include details regarding the type of the attack and how it was prevented, what IP address it originated from and other useful data which may help you to tighten the security of your websites by updating them or blocking IPs, as an example. Besides the commercial rules we get for ModSecurity from a third-party security company, we also use our own rules since once in a while we discover specific attacks that are not yet present inside the commercial package. That way, we can boost the security of your VPS promptly rather than waiting for a certified update.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you will not have to do anything specific on your end to employ it as it is activated by default each time you add a new domain or subdomain on your web server. In the event that it disrupts any of your programs, you will be able to stop it through the respective area of Hepsia, or you may leave it in passive mode, so it'll detect attacks and will still maintain a log for them, but will not prevent them. You could look at the logs later to learn what you can do to improve the security of your sites as you will find details such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity reacted, and so forth. The rules which we employ are commercial, thus they are constantly updated by a security company, but to be on the safe side, our administrators also include custom rules once in a while as to deal with any new threats they have found.