ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's employed to prevent attacks against script-driven Internet sites through the use of security rules that contain certain expressions. In this way, the firewall can stop hacking and spamming attempts and preserve even websites that are not updated on a regular basis. As an example, multiple failed login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script will trigger specific rules, so ModSecurity shall block out these activities the moment it discovers them. The firewall is very efficient as it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It furthermore keeps an exceptionally comprehensive log of all attack attempts which features more info than standard Apache logs, so you could later examine the data and take additional measures to improve the security of your sites if needed.

ModSecurity in Cloud Website Hosting

We offer ModSecurity with all cloud website hosting solutions, so your Internet applications will be resistant to destructive attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you shall be able to stop it via the respective section of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you'll discover within Hepsia are very detailed and offer info about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, etc. We employ a range of commercial rules that are often updated, but sometimes our admins add custom rules as well so as to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

We have incorporated ModSecurity as a standard in all semi-dedicated hosting products, so your web applications shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will allow you to switch on or disable the firewall for any site with a click. You'll also be able to activate a passive detection mode in which ModSecurity will keep a log of potential attacks without really stopping them. The detailed logs include the nature of the attack and what ModSecurity response that attack activated, where it originated from, and so forth. The list of rules which we employ is constantly updated as to match any new threats which may appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones that our admins include in case they find a threat which is not present in the commercial list yet.

ModSecurity in VPS Hosting

All virtual private servers which are provided with the Hepsia CP feature ModSecurity. The firewall is installed and switched on by default for all domains which are hosted on the web server, so there shall not be anything special that you shall have to do to protect your Internet sites. It shall take you just a mouse click to stop ModSecurity if necessary or to turn on its passive mode so that it records what happens without taking any actions to stop intrusions. You shall be able to view the logs created in passive or active mode from the corresponding section of Hepsia and learn more about the type of the attack, where it came from, what rule the firewall used to handle it, and so on. We employ a mix of commercial and custom rules so as to make sure that ModSecurity will block out as many threats as possible, thus improving the security of your web apps as much as possible.

ModSecurity in Dedicated Web Hosting

All of our dedicated servers which are set up with the Hepsia hosting CP come with ModSecurity, so any application which you upload or install will be protected from the very beginning and you won't need to bother about common attacks or vulnerabilities. An individual section in Hepsia will allow you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you shall find in the logs can allow you to to secure your websites better - the IP an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, and so on. With this data, you could see whether a site needs an update, if you should block IPs from accessing your server, and so on. Besides the third-party commercial security rules for ModSecurity we use, our administrators include custom ones as well whenever they come across a new threat that is not yet in the commercial bundle.