ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to prevent attacks toward script-driven Internet sites by using security rules that contain particular expressions. That way, the firewall can stop hacking and spamming attempts and shield even Internet sites which aren't updated regularly. As an example, several unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the second it identifies them. The firewall is very efficient since it tracks the entire HTTP traffic to a site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It also maintains an incredibly thorough log of all attack attempts which features more information than conventional Apache logs, so you can later analyze the data and take additional measures to improve the security of your sites if necessary.
ModSecurity in Web Hosting
ModSecurity comes standard with all web hosting
solutions which we supply and it will be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and deactivate it with only a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it will not do anything to stop them. The log for each of your Internet sites shall feature comprehensive information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules that we use are regularly updated and comprise of both commercial ones we get from a third-party security firm and custom ones that our system administrators add in the event that they detect a new sort of attacks. This way, the sites which you host here shall be a lot more secure with no action required on your end.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting
packages that we offer include ModSecurity and since the firewall is enabled by default, any website you create under a domain or a subdomain will be secured immediately. A separate section within the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it will allow you to start and stop the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity won't take any action, but it will still detect possible attacks and shall keep all information in a log as if it were 100% active. The logs can be found inside the same section of the Control Panel and they offer specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we use on our web servers are a mix between commercial ones from a security company and custom ones created by our system admins. Consequently, we offer higher security for your web programs as we can defend them from attacks even before security corporations release updates for completely new threats.
ModSecurity in VPS
All virtual private servers
that are offered with the Hepsia Control Panel feature ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the web server, so there won't be anything special which you'll have to do to protect your sites. It will take you only a mouse click to stop ModSecurity if needed or to switch on its passive mode so that it records what occurs without taking any measures to prevent intrusions. You'll be able to view the logs created in passive or active mode from the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall employed to deal with it, etcetera. We employ a mix of commercial and custom rules in order to ensure that ModSecurity shall block as many risks as possible, thus increasing the protection of your web programs as much as possible.
ModSecurity in Dedicated Hosting
ModSecurity is provided with all dedicated servers
which are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to use it since it's switched on by default every time you add a new domain or subdomain on your hosting server. In the event that it disrupts some of your apps, you will be able to stop it via the respective section of Hepsia, or you could leave it operating in passive mode, so it'll recognize attacks and shall still keep a log for them, but will not prevent them. You can look at the logs later to find out what you can do to increase the protection of your websites as you'll find details such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity reacted, and so forth. The rules we use are commercial, therefore they're regularly updated by a security provider, but to be on the safe side, our administrators also add custom rules once in a while in order to deal with any new threats they have found.