ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It's employed to stop attacks toward script-driven websites by using security rules that contain particular expressions. This way, the firewall can block hacking and spamming attempts and shield even Internet sites that are not updated on a regular basis. For example, multiple failed login attempts to a script admin area or attempts to execute a particular file with the purpose to get access to the script shall trigger certain rules, so ModSecurity will block out these activities the minute it identifies them. The firewall is extremely efficient because it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any damage is done. It also keeps a very detailed log of all attack attempts that features more information than standard Apache logs, so you can later examine the data and take further measures to increase the security of your sites if needed.
ModSecurity in Cloud Hosting
We provide ModSecurity with all cloud hosting packages, so your Internet apps shall be shielded from harmful attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you shall be able to stop it through the respective area of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you shall find within Hepsia are quite detailed and offer information about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, etcetera. We use a set of commercial rules that are frequently updated, but sometimes our admins include custom rules as well so as to efficiently protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting packages which we offer include ModSecurity and since the firewall is turned on by default, any website that you create under a domain or a subdomain will be secured immediately. A separate section within the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to stop and start the firewall for any website or switch on a detection mode. With the last option, ModSecurity shall not take any action, but it will still recognize possible attacks and shall keep all data in a log as if it were fully active. The logs could be found within the exact same section of the Control Panel and they include specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules we employ on our web servers are a mix between commercial ones from a security business and custom ones created by our system admins. Therefore, we provide increased security for your web apps as we can protect them from attacks even before security corporations release updates for completely new threats.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers which are provided with the Hepsia hosting CP, so your web programs will be protected from the second your server is in a position. The firewall is switched on by default for any domain or subdomain on the VPS, but if required, you could disable it with a click of your mouse from the corresponding section of Hepsia. You can also set it to function in detection mode, so it'll maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs are available inside the same section and provide info about the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For optimum security, we use not only commercial rules from a firm working in the field of web security, but also custom ones our admins include manually so as to respond to new threats which are still not dealt with in the commercial rules.
ModSecurity in Dedicated Web Hosting
All of our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any application which you upload or set up will be properly secured from the very beginning and you will not have to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records details about intrusions, but does not take actions to stop them. What you'll discover in the logs shall help you to secure your sites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this data, you could see whether a website needs an update, if you need to block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well if they discover a new threat that's not yet included in the commercial bundle.