ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is employed to stop attacks towards script-driven websites by employing security rules that contain specific expressions. This way, the firewall can block hacking and spamming attempts and shield even websites which aren't updated regularly. For example, a number of failed login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script will trigger specific rules, so ModSecurity shall block out these activities the second it identifies them. The firewall is very efficient as it monitors the whole HTTP traffic to a site in real time without slowing it down, so it could prevent an attack before any damage is done. It furthermore maintains an exceptionally comprehensive log of all attack attempts which includes more info than conventional Apache logs, so you can later check out the data and take further measures to improve the security of your websites if necessary.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting solutions, so your Internet applications shall be shielded from harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you shall be able to stop it using the respective area of your Hepsia CP. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you shall find within Hepsia are very detailed and offer data about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, and so on. We employ a set of commercial rules which are frequently updated, but sometimes our admins include custom rules as well so as to better protect the Internet sites hosted on our machines.

ModSecurity in VPS Web Hosting

ModSecurity comes with all Hepsia-based virtual private servers we offer and it shall be activated automatically for any new domain or subdomain which you add on the machine. This way, any web app you install shall be protected from the very beginning without doing anything by hand on your end. The firewall can be managed via the section of the Control Panel that bears the same name. This is the area in whichyou'll be able to turn off ModSecurity or activate its passive mode, so it won't take any action against threats, but shall still keep a comprehensive log. The recorded data is available within the same area as well and you will be able to see what IPs any attacks originated from to enable you to stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we employ on our servers are a blend between commercial ones we get from a security company and custom ones that are included by our staff to optimize the security of any web applications hosted on our end.

ModSecurity in Dedicated Servers Hosting

When you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web programs shall be protected immediately as ModSecurity is supplied with all Hepsia-based plans. You will be able to regulate the firewall with ease and if needed, you shall be able to turn it off or switch on its passive mode when it'll only keep a log of what's happening without taking any action to stop possible attacks. The logs that you'll find within the exact same section of the CP are extremely detailed and feature info about the attacker IP address, what website and file were attacked and in what way, what rule the firewall employed to stop the intrusion, and so on. This data shall permit you to take measures and improve the protection of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our administrators include when they detect attacks which haven't yet been included inside the commercial pack.