ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It is used to prevent attacks toward script-driven websites by employing security rules which contain certain expressions. That way, the firewall can prevent hacking and spamming attempts and preserve even Internet sites that are not updated on a regular basis. For example, multiple unsuccessful login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script will trigger particular rules, so ModSecurity will block out these activities the instant it identifies them. The firewall is very efficient since it screens the whole HTTP traffic to a website in real time without slowing it down, so it could prevent an attack before any harm is done. It furthermore maintains a very detailed log of all attack attempts which features more information than traditional Apache logs, so you can later examine the data and take additional measures to enhance the security of your Internet sites if required.

ModSecurity in Shared Website Hosting

ModSecurity comes by default with all shared website hosting packages which we provide and it shall be switched on automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has three different modes, so you can switch on and deactivate it with a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your websites will include in-depth information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules we use are constantly updated and incorporate both commercial ones we get from a third-party security business and custom ones that our system admins include in the event that they detect a new sort of attacks. In this way, the websites you host here will be a lot more secure without any action required on your end.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer come with ModSecurity and given that the firewall is enabled by default, any site you set up under a domain or a subdomain will be protected immediately. A separate section inside the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it'll permit you to start and stop the firewall for any Internet site or enable a detection mode. With the last mentioned, ModSecurity shall not take any action, but it'll still detect possible attacks and will keep all data inside a log as if it were fully active. The logs could be found within the exact same section of the CP and they feature specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules we employ on our servers are a mix of commercial ones from a security company and custom ones made by our system administrators. Therefore, we provide greater security for your web applications as we can defend them from attacks even before security corporations release updates for brand new threats.

ModSecurity in Dedicated Servers

When you decide to host your Internet sites on a dedicated server with the Hepsia CP, your web applications shall be protected straight away because ModSecurity is supplied with all Hepsia-based plans. You shall be able to manage the firewall easily and if needed, you will be able to turn it off or activate its passive mode when it will only keep a log of what is happening without taking any action to prevent possible attacks. The logs which you'll find inside the exact same section of the Control Panel are extremely detailed and feature data about the attacker IP, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, etc. This data will allow you to take measures and increase the security of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our administrators include every time they recognize attacks that haven't yet been included within the commercial pack.