ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is used to prevent attacks toward script-driven Internet sites by employing security rules that contain certain expressions. This way, the firewall can prevent hacking and spamming attempts and preserve even websites that aren't updated frequently. For instance, numerous failed login attempts to a script administrative area or attempts to execute a certain file with the objective to get access to the script shall trigger particular rules, so ModSecurity shall block these activities the second it identifies them. The firewall is very efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any harm is done. It furthermore maintains an exceptionally comprehensive log of all attack attempts which includes more info than conventional Apache logs, so you could later check out the data and take additional measures to boost the security of your sites if required.

ModSecurity in Cloud Website Hosting

ModSecurity is supplied with all cloud website hosting web servers, so if you choose to host your Internet sites with our business, they'll be protected against an array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any website if needed, or to switch on a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You will be able to view specific logs via your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the security of our customers' sites very seriously, we employ a set of commercial rules which we take from one of the top firms that maintain such rules. Our admins also add custom rules to make certain that your Internet sites shall be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Hosting

Any web application which you install within your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain which you add or create through your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated section in Hepsia where not simply can you activate or deactivate it entirely, but you may also enable a passive mode, so the firewall shall not stop anything, but it will still maintain a record of potential attacks. This normally requires only a mouse click and you shall be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, etc. The firewall employs two sets of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one which our admins update manually in order to respond to newly discovered threats as quickly as possible.

ModSecurity in VPS Hosting

ModSecurity is included with all Hepsia-based virtual private servers we offer and it'll be activated automatically for any new domain or subdomain which you add on the web server. That way, any web application which you install shall be secured right from the start without doing anything manually on your end. The firewall may be handled from the section of the CP that bears the same name. This is the place in whichyou can turn off ModSecurity or let its passive mode, so it won't take any action towards threats, but shall still keep a comprehensive log. The recorded information is available in the same section as well and you'll be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we employ on our servers are a blend between commercial ones that we obtain from a security firm and custom ones which are included by our staff to improve the security of any web apps hosted on our end.

ModSecurity in Dedicated Web Hosting

When you opt to host your sites on a dedicated server with the Hepsia CP, your web applications will be secured right from the start since ModSecurity is available with all Hepsia-based solutions. You'll be able to control the firewall effortlessly and if necessary, you'll be able to turn it off or switch on its passive mode when it will only maintain a log of what is occurring without taking any action to prevent potential attacks. The logs that you will find in the very same section of the Control Panel are extremely detailed and feature info about the attacker IP address, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so forth. This information will enable you to take measures and increase the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our administrators include whenever they recognize attacks which have not yet been included in the commercial pack.