ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is used to stop attacks toward script-driven sites through the use of security rules that contain certain expressions. This way, the firewall can stop hacking and spamming attempts and protect even Internet sites which are not updated regularly. As an example, several failed login attempts to a script administrator area or attempts to execute a specific file with the intention to get access to the script will trigger specific rules, so ModSecurity shall block out these activities the moment it discovers them. The firewall is incredibly efficient since it tracks the entire HTTP traffic to a website in real time without slowing it down, so it can easily prevent an attack before any harm is done. It also maintains an exceptionally detailed log of all attack attempts that features more info than typical Apache logs, so you could later check out the data and take additional measures to increase the security of your websites if needed.

ModSecurity in Cloud Website Hosting

ModSecurity comes standard with all cloud website hosting plans which we provide and it'll be switched on automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to activate and deactivate it with simply a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to stop them. The log for any of your sites shall include in-depth information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules we use are frequently updated and incorporate both commercial ones we get from a third-party security business and custom ones our system administrators include in the event that they detect a new sort of attacks. That way, the Internet sites which you host here will be much more protected without any action required on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer feature ModSecurity and because the firewall is enabled by default, any Internet site that you create under a domain or a subdomain shall be secured immediately. An independent section in the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it will allow you to start and stop the firewall for any Internet site or activate a detection mode. With the latter, ModSecurity shall not take any action, but it will still identify possible attacks and will keep all data inside a log as if it were 100% active. The logs could be found within the same section of the CP and they offer specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules that we employ on our machines are a mix between commercial ones from a security firm and custom ones developed by our system administrators. As a result, we offer higher security for your web programs as we can protect them from attacks before security corporations release updates for brand new threats.

ModSecurity in Dedicated Hosting

ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you will not have to do anything specific on your end to use it because it is turned on by default each time you add a new domain or subdomain on your server. In the event that it interferes with any of your programs, you shall be able to stop it via the respective section of Hepsia, or you may leave it operating in passive mode, so it shall recognize attacks and will still keep a log for them, but will not block them. You can examine the logs later to determine what you can do to improve the safety of your Internet sites as you shall find info such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity responded, etc. The rules we employ are commercial, therefore they're regularly updated by a security provider, but to be on the safe side, our administrators also include custom rules once in a while in order to deal with any new threats they have identified.