ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's employed to prevent attacks toward script-driven sites by employing security rules that contain specific expressions. That way, the firewall can stop hacking and spamming attempts and shield even sites that aren't updated frequently. For example, numerous unsuccessful login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script shall trigger particular rules, so ModSecurity will block out these activities the instant it detects them. The firewall is very efficient since it monitors the entire HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It additionally keeps a very comprehensive log of all attack attempts that contains more information than conventional Apache logs, so you can later examine the data and take extra measures to enhance the security of your Internet sites if necessary.
ModSecurity in Cloud Website Hosting
ModSecurity comes by default with all cloud website hosting
solutions which we offer and it shall be activated automatically for any domain or subdomain which you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you can activate and deactivate it with simply a click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to prevent them. The log for each of your sites will include detailed information such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules which we use are regularly updated and consist of both commercial ones which we get from a third-party security firm and custom ones that our system admins include in case that they detect a new type of attacks. In this way, the sites that you host here shall be far more secure with no action needed on your end.
ModSecurity in Semi-dedicated Hosting
Any web app which you install inside your new semi-dedicated hosting
account will be protected by ModSecurity because the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain you include or create using your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated area inside Hepsia where not simply could you activate or deactivate it entirely, but you may also activate a passive mode, so the firewall will not block anything, but it will still maintain an archive of potential attacks. This takes just a click and you shall be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was dealt with, and so forth. The firewall employs two sets of rules on our web servers - a commercial one which we get from a third-party web security firm and a custom one which our admins update manually in order to respond to recently discovered threats as soon as possible.
ModSecurity in VPS Web Hosting
ModSecurity is provided with all Hepsia-based virtual private servers
that we offer and it shall be activated automatically for every new domain or subdomain you add on the machine. This way, any web app you install shall be protected right from the start without doing anything personally on your end. The firewall can be handled through the section of the CP which bears the same name. This is the location in whichyou'll be able to switch off ModSecurity or enable its passive mode, so it shall not take any action towards threats, but will still maintain a detailed log. The recorded data is available inside the same area as well and you'll be able to see what IPs any attacks originated from so that you stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules that we employ on our servers are a mixture between commercial ones that we obtain from a security firm and custom ones that are added by our administrators to maximize the protection of any web apps hosted on our end.
ModSecurity in Dedicated Servers Hosting
When you decide to host your sites on a dedicated server
with the Hepsia Control Panel, your web apps will be protected right from the start as ModSecurity is available with all Hepsia-based plans. You'll be able to regulate the firewall effortlessly and if needed, you will be able to turn it off or activate its passive mode when it shall only maintain a log of what is happening without taking any action to prevent possible attacks. The logs that you will find in the exact same section of the Control Panel are extremely detailed and feature data about the attacker IP, what website and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etcetera. This data will allow you to take measures and boost the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our admins add whenever they recognize attacks which have not yet been included in the commercial pack.