ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It is used to prevent attacks toward script-driven sites by using security rules that contain particular expressions. This way, the firewall can block hacking and spamming attempts and preserve even websites which aren't updated frequently. As an example, a number of failed login attempts to a script administrator area or attempts to execute a specific file with the intention to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the instant it identifies them. The firewall is incredibly efficient because it monitors the entire HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any harm is done. It also maintains an exceptionally thorough log of all attack attempts that features more information than conventional Apache logs, so you can later examine the data and take further measures to boost the security of your Internet sites if required.

ModSecurity in Cloud Web Hosting

ModSecurity is provided with all cloud web hosting servers, so if you decide to host your Internet sites with our organization, they will be protected against a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any Internet site if needed, or to activate a detection mode, so all activity shall be recorded, but the firewall won't take any real action. You shall be able to view detailed logs using your Hepsia Control Panel including the IP address where the attack originated from, what the attacker planned to do and how ModSecurity dealt with the threat. Since we take the security of our customers' sites seriously, we use a set of commercial rules which we get from one of the best companies which maintain this sort of rules. Our administrators also include custom rules to make sure that your websites will be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity by default in all semi-dedicated hosting packages, so your web applications will be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will permit you to activate or turn off the firewall for any website with a mouse click. You'll also be able to activate a passive detection mode with which ModSecurity shall maintain a log of potential attacks without really stopping them. The detailed logs contain the nature of the attack and what ModSecurity response that attack generated, where it originated from, etc. The list of rules that we use is constantly updated as to match any new risks that may appear on the Internet and it includes both commercial rules that we get from a security business and custom-written ones that our admins add in case they discover a threat that's not present within the commercial list yet.

ModSecurity in VPS Hosting

ModSecurity is provided with all Hepsia-based virtual private servers which we offer and it will be activated automatically for any new domain or subdomain that you add on the machine. This way, any web app you install will be secured right from the start without doing anything by hand on your end. The firewall may be handled from the section of the CP that has the same name. This is the location whereyou could disable ModSecurity or enable its passive mode, so it won't take any action towards threats, but will still keep a comprehensive log. The recorded data is available inside the same section as well and you will be able to see what IPs any attacks came from so that you stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules we employ on our servers are a mixture between commercial ones we obtain from a security organization and custom ones which are included by our administrators to optimize the security of any web apps hosted on our end.

ModSecurity in Dedicated Web Hosting

If you choose to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps shall be protected right from the start as ModSecurity is supplied with all Hepsia-based plans. You will be able to regulate the firewall easily and if required, you will be able to turn it off or enable its passive mode when it will only maintain a log of what is occurring without taking any action to prevent possible attacks. The logs that you will find inside the exact same section of the CP are really detailed and feature info about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to stop the intrusion, etcetera. This data will permit you to take measures and boost the protection of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our staff include whenever they recognize attacks which have not yet been included inside the commercial pack.