ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is used to prevent attacks toward script-driven websites through the use of security rules which contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even sites that aren't updated regularly. For example, numerous unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the purpose to get access to the script shall trigger particular rules, so ModSecurity shall stop these activities the minute it detects them. The firewall is quite efficient since it monitors the whole HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any harm is done. It also maintains an incredibly detailed log of all attack attempts which contains more info than typical Apache logs, so you could later check out the data and take extra measures to increase the security of your sites if needed.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting solutions that we supply and it will be activated automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with just a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it will not do anything to prevent them. The log for each of your Internet sites will contain in-depth info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules we use are regularly updated and include both commercial ones we get from a third-party security firm and custom ones which our system admins add in the event that they detect a new type of attacks. This way, the websites you host here shall be way more protected with no action needed on your end.

ModSecurity in Semi-dedicated Servers

We have integrated ModSecurity by default inside all semi-dedicated server packages, so your web applications will be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts shall permit you to switch on or disable the firewall for any website with a mouse click. You shall also have the ability to activate a passive detection mode with which ModSecurity shall maintain a log of possible attacks without actually preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response that attack caused, where it came from, and so on. The list of rules we use is regularly updated in order to match any new threats that could appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones which our admins add if they discover a threat that's not present inside the commercial list yet.

ModSecurity in VPS Servers

Safety is extremely important to us, so we set up ModSecurity on all VPS servers that are made available with the Hepsia Control Panel by default. The firewall could be managed via a dedicated section inside Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you will not have to do anything manually. You shall also be able to disable it or activate the so-called detection mode, so it'll keep a log of potential attacks that you can later study, but won't prevent them. The logs in both passive and active modes contain info about the type of the attack and how it was stopped, what IP it came from and other important info that may help you to tighten the security of your websites by updating them or blocking IPs, for instance. Besides the commercial rules we get for ModSecurity from a third-party security firm, we also implement our own rules because once in a while we identify specific attacks that aren't yet present within the commercial pack. That way, we can improve the security of your VPS right away rather than waiting for a certified update.

ModSecurity in Dedicated Servers

If you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured right from the start since ModSecurity is provided with all Hepsia-based plans. You shall be able to regulate the firewall with ease and if required, you'll be able to turn it off or activate its passive mode when it'll only maintain a log of what's occurring without taking any action to stop potential attacks. The logs that you will find inside the very same section of the Control Panel are really detailed and contain information about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, etc. This info shall allow you to take measures and increase the protection of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our administrators include whenever they detect attacks which haven't yet been included in the commercial pack.