ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's used to prevent attacks against script-driven websites by employing security rules which contain specific expressions. That way, the firewall can prevent hacking and spamming attempts and shield even websites which aren't updated frequently. As an example, a number of unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the purpose to get access to the script shall trigger certain rules, so ModSecurity shall block out these activities the minute it detects them. The firewall is incredibly efficient as it tracks the whole HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any damage is done. It also keeps an incredibly thorough log of all attack attempts that features more information than typical Apache logs, so you could later check out the data and take further measures to boost the security of your Internet sites if necessary.
ModSecurity in Shared Website Hosting
ModSecurity can be found with every single shared website hosting plan that we offer and it's activated by default for every domain or subdomain which you add via your Hepsia CP. In case it interferes with any of your applications or you would like to disable it for whatever reason, you will be able to do that through the ModSecurity area of Hepsia with merely a mouse click. You may also use a passive mode, so the firewall will discover potential attacks and keep a log, but won't take any action. You can see comprehensive logs in the same section, including the IP where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etc. For maximum protection of our clients we use a group of commercial firewall rules mixed with custom ones which are added by our system administrators.
ModSecurity in Semi-dedicated Servers
Any web program that you install in your new semi-dedicated server account shall be protected by ModSecurity because the firewall comes with all our hosting plans and is switched on by default for any domain and subdomain that you include or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated section in Hepsia where not simply could you activate or deactivate it fully, but you can also enable a passive mode, so the firewall will not block anything, but it shall still keep an archive of potential attacks. This normally requires simply a mouse click and you will be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was taken care of, etcetera. The firewall employs two sets of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one which our admins update manually as to respond to newly discovered threats immediately.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting Control Panel, so your web applications shall be protected from the instant your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if necessary, you could disable it with a click via the corresponding section of Hepsia. You could also set it to operate in detection mode, so it shall keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found in the exact same section and include information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not simply commercial rules from a business operating in the field of web security, but also custom ones which our admins add personally so as to respond to new risks that are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
All our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any app that you upload or install will be secured from the very beginning and you will not need to stress about common attacks or vulnerabilities. A separate section in Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or activate a detection mode so that it records info about intrusions, but does not take actions to stop them. What you'll find in the logs can help you to secure your sites better - the IP an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, etc. With this information, you can see whether an Internet site needs an update, whether you should block IPs from accessing your server, etc. Besides the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too every time they find a new threat that's not yet in the commercial bundle.