ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is employed to prevent attacks toward script-driven Internet sites by employing security rules which contain particular expressions. This way, the firewall can block hacking and spamming attempts and shield even websites that aren't updated on a regular basis. For instance, several unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script shall trigger particular rules, so ModSecurity will block these activities the minute it identifies them. The firewall is very efficient because it monitors the whole HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any damage is done. It also keeps an exceptionally detailed log of all attack attempts which contains more info than traditional Apache logs, so you can later check out the data and take extra measures to enhance the security of your websites if necessary.

ModSecurity in Shared Hosting

ModSecurity is offered with each and every shared hosting solution which we provide and it's turned on by default for every domain or subdomain that you include via your Hepsia Control Panel. In case it disrupts any of your programs or you would like to disable it for any reason, you will be able to do this through the ModSecurity area of Hepsia with just a mouse click. You could also enable a passive mode, so the firewall will recognize possible attacks and maintain a log, but won't take any action. You could view comprehensive logs in the very same section, including the IP address where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, etcetera. For maximum protection of our customers we use a collection of commercial firewall rules blended with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web application you set up within your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting plans and is activated by default for any domain and subdomain you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated section in Hepsia where not only could you activate or deactivate it fully, but you can also activate a passive mode, so the firewall will not stop anything, but it'll still maintain a record of potential attacks. This requires only a click and you'll be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, and so on. The firewall employs two sets of rules on our servers - a commercial one which we get from a third-party web security firm and a custom one which our admins update manually as to respond to recently discovered risks at the earliest opportunity.

ModSecurity in VPS Web Hosting

All virtual private servers that are provided with the Hepsia CP come with ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the server, so there won't be anything special which you'll need to do to protect your sites. It shall take you only a click to stop ModSecurity if required or to activate its passive mode so that it records what occurs without taking any steps to prevent intrusions. You'll be able to see the logs created in active or passive mode through the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall employed to tackle it, and so on. We employ a mix of commercial and custom rules so as to make certain that ModSecurity will block out as many risks as possible, hence enhancing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers Hosting

When you choose to host your sites on a dedicated server with the Hepsia CP, your web programs shall be secured straight away since ModSecurity is provided with all Hepsia-based packages. You'll be able to manage the firewall with ease and if required, you will be able to turn it off or enable its passive mode when it will only maintain a log of what's taking place without taking any action to prevent possible attacks. The logs which you'll find inside the exact same section of the Control Panel are incredibly detailed and contain details about the attacker IP address, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, etc. This information will permit you to take measures and increase the protection of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our staff add when they identify attacks which have not yet been included within the commercial pack.