ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to prevent attacks against script-driven sites by employing security rules that contain specific expressions. In this way, the firewall can prevent hacking and spamming attempts and protect even sites that aren't updated often. For example, numerous failed login attempts to a script administrator area or attempts to execute a certain file with the intention to get access to the script shall trigger certain rules, so ModSecurity shall stop these activities the minute it discovers them. The firewall is quite efficient as it monitors the entire HTTP traffic to a site in real time without slowing it down, so it could prevent an attack before any damage is done. It additionally keeps an incredibly thorough log of all attack attempts that includes more information than traditional Apache logs, so you could later check out the data and take extra measures to boost the security of your sites if required.

ModSecurity in Cloud Hosting

We provide ModSecurity with all cloud hosting packages, so your web applications will be shielded from malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you will be able to stop it through the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you'll find in Hepsia are extremely detailed and offer data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, and so on. We employ a group of commercial rules that are constantly updated, but sometimes our admins add custom rules as well in order to better protect the websites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

Any web program that you set up inside your new semi-dedicated hosting account will be protected by ModSecurity because the firewall comes with all our hosting plans and is turned on by default for any domain and subdomain which you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area within Hepsia where not only can you activate or deactivate it fully, but you can also activate a passive mode, so the firewall won't stop anything, but it'll still maintain a record of potential attacks. This requires just a mouse click and you will be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, etc. The firewall uses 2 sets of rules on our web servers - a commercial one that we get from a third-party web security company and a custom one which our administrators update personally as to respond to recently discovered threats immediately.

ModSecurity in VPS Web Hosting

All virtual private servers that are offered with the Hepsia CP include ModSecurity. The firewall is set up and activated by default for all domains which are hosted on the web server, so there will not be anything special which you will have to do to protect your websites. It will take you just a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what goes on without taking any steps to stop intrusions. You shall be able to look at the logs produced in passive or active mode from the corresponding section of Hepsia and learn more about the form of the attack, where it originated from, what rule the firewall employed to take care of it, and so on. We use a combination of commercial and custom rules in order to ensure that ModSecurity shall prevent as many risks as possible, therefore enhancing the protection of your web apps as much as possible.

ModSecurity in Dedicated Servers Hosting

ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain you create on the server. Just in case that a web app doesn't operate correctly, you could either switch off the firewall or set it to function in passive mode. The second means that ModSecurity will maintain a log of any potential attack which might occur, but will not take any action to stop it. The logs generated in active or passive mode will give you additional details about the exact file that was attacked, the form of the attack and the IP it came from, etc. This info will allow you to decide what measures you can take to improve the security of your Internet sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules we use are updated constantly with a commercial bundle from a third-party security company we work with, but occasionally our staff add their own rules too if they identify a new potential threat.