ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to prevent attacks toward script-driven websites through the use of security rules which contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and protect even sites that aren't updated on a regular basis. For example, several failed login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script shall trigger certain rules, so ModSecurity will block out these activities the moment it identifies them. The firewall is extremely efficient since it tracks the entire HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any harm is done. It furthermore maintains an incredibly comprehensive log of all attack attempts that includes more info than traditional Apache logs, so you could later check out the data and take extra measures to enhance the security of your websites if needed.
ModSecurity in Shared Web Hosting
We offer ModSecurity with all shared web hosting plans, so your Internet applications will be resistant to destructive attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you shall be able to stop it using the respective part of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you'll find inside Hepsia are quite detailed and include information about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, and so forth. We employ a group of commercial rules which are frequently updated, but sometimes our administrators add custom rules as well so as to efficiently protect the sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
Any web app you set up in your new semi-dedicated server account will be protected by ModSecurity because the firewall is provided with all our hosting solutions and is activated by default for any domain and subdomain which you add or create through your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section in Hepsia where not simply can you activate or deactivate it completely, but you could also enable a passive mode, so the firewall will not block anything, but it will still keep a record of potential attacks. This takes only a click and you will be able to see the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall uses 2 groups of rules on our servers - a commercial one that we get from a third-party web security provider and a custom one that our administrators update personally as to respond to newly discovered risks as quickly as possible.
ModSecurity in VPS Servers
Safety is extremely important to us, so we install ModSecurity on all VPS servers that are set up with the Hepsia CP by default. The firewall could be managed through a dedicated section within Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you'll not need to do anything manually. You'll also be able to deactivate it or activate the so-called detection mode, so it will keep a log of potential attacks you can later study, but will not prevent them. The logs in both passive and active modes include information regarding the kind of the attack and how it was prevented, what IP address it came from and other useful info which may help you to tighten the security of your websites by updating them or blocking IPs, for example. Beyond the commercial rules we get for ModSecurity from a third-party security firm, we also employ our own rules as once in a while we identify specific attacks which are not yet present inside the commercial package. That way, we can enhance the security of your VPS instantly rather than awaiting an official update.
ModSecurity in Dedicated Servers
When you opt to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web programs shall be secured right from the start as ModSecurity is provided with all Hepsia-based plans. You'll be able to manage the firewall effortlessly and if necessary, you will be able to turn it off or enable its passive mode when it shall only keep a log of what's going on without taking any action to prevent potential attacks. The logs that you can find inside the very same section of the Control Panel are incredibly detailed and contain data about the attacker IP address, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This info shall permit you to take measures and enhance the security of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our admins add when they recognize attacks that have not yet been included inside the commercial pack.