ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is employed to stop attacks against script-driven Internet sites by employing security rules which contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and protect even Internet sites that are not updated frequently. For instance, several unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the purpose to get access to the script will trigger specific rules, so ModSecurity will stop these activities the second it discovers them. The firewall is incredibly efficient as it tracks the whole HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It additionally maintains a very detailed log of all attack attempts that contains more info than standard Apache logs, so you can later examine the data and take extra measures to improve the security of your sites if needed.

ModSecurity in Cloud Website Hosting

ModSecurity is supplied with all cloud website hosting web servers, so if you opt to host your sites with our company, they shall be protected against an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there will be nothing you will need to do on your end. You'll be able to stop ModSecurity for any website if needed, or to switch on a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You shall be able to view specific logs through your Hepsia CP including the IP address where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the protection of our customers' websites very seriously, we employ a group of commercial rules that we take from one of the top companies that maintain this kind of rules. Our admins also include custom rules to make sure that your websites will be resistant to as many threats as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting solutions and if you choose to host your sites with our company, there won't be anything special you'll have to do since the firewall is activated by default for all domains and subdomains that you add through your hosting Control Panel. If necessary, you could disable ModSecurity for a given Internet site or turn on the so-called detection mode in which case the firewall will still function and record information, but won't do anything to stop potential attacks against your Internet sites. Thorough logs will be accessible in your CP and you'll be able to see what sort of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, etcetera. We employ two kinds of rules on our servers - commercial ones from a company that operates in the field of web security, and custom ones that our administrators often add to respond to newly discovered risks on time.

ModSecurity in VPS Hosting

All virtual private servers which are provided with the Hepsia Control Panel feature ModSecurity. The firewall is installed and turned on by default for all domains that are hosted on the machine, so there will not be anything special which you'll need to do to protect your Internet sites. It shall take you only a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any measures to prevent intrusions. You shall be able to view the logs produced in passive or active mode via the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to take care of it, etc. We use a mixture of commercial and custom rules so as to make certain that ModSecurity shall block out as many risks as possible, hence enhancing the security of your web applications as much as possible.

ModSecurity in Dedicated Web Hosting

If you opt to host your websites on a dedicated server with the Hepsia CP, your web apps shall be protected immediately since ModSecurity is supplied with all Hepsia-based solutions. You'll be able to control the firewall easily and if needed, you'll be able to turn it off or activate its passive mode when it will only keep a log of what's occurring without taking any action to prevent possible attacks. The logs that you will find inside the exact same section of the Control Panel are really detailed and contain data about the attacker IP, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, and so on. This information shall enable you to take measures and improve the security of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our admins add every time they identify attacks which have not yet been included in the commercial pack.