ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to stop attacks towards script-driven websites through the use of security rules which contain certain expressions. This way, the firewall can block hacking and spamming attempts and shield even sites which aren't updated often. For example, a number of unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script will trigger certain rules, so ModSecurity will block out these activities the second it detects them. The firewall is very efficient because it monitors the entire HTTP traffic to a website in real time without slowing it down, so it could prevent an attack before any damage is done. It furthermore keeps an exceptionally thorough log of all attack attempts which contains more info than typical Apache logs, so you could later examine the data and take additional measures to increase the security of your Internet sites if necessary.
ModSecurity in Shared Hosting
ModSecurity is available with each and every shared hosting plan which we offer and it's switched on by default for any domain or subdomain which you include via your Hepsia CP. In case it disrupts any of your programs or you'd like to disable it for whatever reason, you'll be able to accomplish that through the ModSecurity section of Hepsia with only a mouse click. You could also enable a passive mode, so the firewall will identify potential attacks and maintain a log, but will not take any action. You'll be able to view extensive logs in the very same section, including the IP address where the attack originated from, what exactly the attacker attempted to do and at what time, what ModSecurity did, and so on. For optimum protection of our customers we use a set of commercial firewall rules blended with custom ones that are provided by our system administrators.
ModSecurity in Semi-dedicated Hosting
Any web application which you install inside your new semi-dedicated hosting account will be protected by ModSecurity as the firewall comes with all our hosting plans and is activated by default for any domain and subdomain that you include or create through your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated area in Hepsia where not only could you activate or deactivate it fully, but you may also enable a passive mode, so the firewall shall not stop anything, but it shall still keep a record of potential attacks. This normally requires only a mouse click and you shall be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was dealt with, and so on. The firewall uses two sets of rules on our web servers - a commercial one which we get from a third-party web security firm and a custom one which our administrators update manually as to respond to recently discovered risks as fast as possible.
ModSecurity in VPS Web Hosting
Protection is vital to us, so we set up ModSecurity on all virtual private servers which are provided with the Hepsia Control Panel by default. The firewall could be managed through a dedicated section within Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you won't need to do anything by hand. You'll also be able to disable it or turn on the so-called detection mode, so it'll maintain a log of potential attacks you can later analyze, but will not prevent them. The logs in both passive and active modes offer details about the type of the attack and how it was stopped, what IP address it came from and other useful information that might help you to tighten the security of your sites by updating them or blocking IPs, for instance. Beyond the commercial rules that we get for ModSecurity from a third-party security enterprise, we also employ our own rules since from time to time we find specific attacks that are not yet present within the commercial package. This way, we can boost the protection of your Virtual private server instantly instead of waiting for an official update.
ModSecurity in Dedicated Servers Hosting
All of our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program that you upload or set up shall be properly secured from the very beginning and you will not need to worry about common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but does not take actions to stop them. What you'll find in the logs can easily help you to secure your websites better - the IP an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, etcetera. With this data, you can see if a website needs an update, if you should block IPs from accessing your web server, etc. In addition to the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones as well if they come across a new threat that is not yet included in the commercial bundle.