ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to stop attacks toward script-driven sites through the use of security rules which contain specific expressions. That way, the firewall can prevent hacking and spamming attempts and protect even Internet sites that are not updated frequently. As an example, a number of failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the instant it identifies them. The firewall is very efficient as it tracks the whole HTTP traffic to a site in real time without slowing it down, so it can easily prevent an attack before any harm is done. It also maintains an exceptionally detailed log of all attack attempts that includes more info than standard Apache logs, so you can later check out the data and take additional measures to enhance the security of your sites if necessary.

ModSecurity in Hosting

ModSecurity comes standard with all hosting plans which we provide and it shall be turned on automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and disable it with simply a mouse click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to prevent them. The log for any of your sites shall feature in-depth info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are constantly updated and include both commercial ones we get from a third-party security business and custom ones our system admins include in case that they detect a new sort of attacks. This way, the websites that you host here will be way more secure without any action required on your end.

ModSecurity in Semi-dedicated Servers

Any web program that you install inside your new semi-dedicated server account shall be protected by ModSecurity because the firewall comes with all our hosting plans and is activated by default for any domain and subdomain you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated area in Hepsia where not simply can you activate or deactivate it fully, but you may also enable a passive mode, so the firewall shall not block anything, but it'll still maintain an archive of possible attacks. This requires simply a mouse click and you'll be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, and so forth. The firewall employs two groups of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one that our administrators update manually in order to respond to newly discovered risks immediately.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any program which you upload or install shall be protected from the very beginning and you'll not need to bother about common attacks or vulnerabilities. A separate section within Hepsia will permit you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you shall discover in the logs can enable you to to secure your Internet sites better - the IP an attack came from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this information, you could see whether a website needs an update, whether you should block IPs from accessing your server, and so forth. On top of the third-party commercial security rules for ModSecurity which we use, our admins include custom ones too every time they find a new threat that's not yet included in the commercial bundle.