ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is used to prevent attacks towards script-driven sites through the use of security rules which contain certain expressions. This way, the firewall can stop hacking and spamming attempts and shield even websites that are not updated often. As an example, a number of unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the moment it identifies them. The firewall is incredibly efficient because it screens the whole HTTP traffic to a website in real time without slowing it down, so it could stop an attack before any harm is done. It additionally keeps an incredibly detailed log of all attack attempts which features more info than standard Apache logs, so you can later examine the data and take extra measures to improve the security of your sites if necessary.
ModSecurity in Shared Web Hosting
ModSecurity comes by default with all shared web hosting
solutions that we provide and it shall be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and deactivate it with a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to stop them. The log for any of your Internet sites will contain comprehensive information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and incorporate both commercial ones which we get from a third-party security company and custom ones that our system administrators include in case that they detect a new sort of attacks. This way, the Internet sites which you host here shall be way more protected without any action required on your end.
ModSecurity in Semi-dedicated Hosting
Any web app that you install within your new semi-dedicated hosting
account will be protected by ModSecurity since the firewall is included with all our hosting packages and is activated by default for any domain and subdomain that you add or create using your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it fully, but you could also activate a passive mode, so the firewall shall not block anything, but it shall still keep an archive of potential attacks. This takes simply a mouse click and you shall be able to look at the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, etc. The firewall uses two groups of rules on our machines - a commercial one which we get from a third-party web security firm and a custom one that our admins update personally in order to respond to recently discovered risks immediately.
ModSecurity in VPS Web Hosting
Safety is essential to us, so we set up ModSecurity on all virtual private servers
that are made available with the Hepsia CP by default. The firewall can be managed through a dedicated section within Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you won't have to do anything manually. You'll also be able to disable it or activate the so-called detection mode, so it'll keep a log of potential attacks you can later examine, but won't prevent them. The logs in both passive and active modes contain info regarding the type of the attack and how it was stopped, what IP address it came from and other useful information which could help you to tighten the security of your sites by updating them or blocking IPs, for instance. In addition to the commercial rules that we get for ModSecurity from a third-party security firm, we also implement our own rules since every now and then we detect specific attacks that are not yet present in the commercial pack. That way, we can easily improve the security of your Virtual private server right away as opposed to awaiting a certified update.
ModSecurity in Dedicated Servers Hosting
ModSecurity is provided with all dedicated servers
that are integrated with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it as it's activated by default whenever you add a new domain or subdomain on your web server. In case it disrupts any of your programs, you'll be able to stop it via the respective section of Hepsia, or you can leave it operating in passive mode, so it'll identify attacks and shall still keep a log for them, but will not stop them. You may analyze the logs later to find out what you can do to enhance the safety of your websites as you shall find info such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules we employ are commercial, thus they're regularly updated by a security provider, but to be on the safe side, our administrators also include custom rules from time to time in order to deal with any new threats they have discovered.