ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's used to stop attacks towards script-driven websites by using security rules that contain certain expressions. That way, the firewall can stop hacking and spamming attempts and protect even Internet sites that aren't updated on a regular basis. As an example, several unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script shall trigger particular rules, so ModSecurity will stop these activities the moment it detects them. The firewall is incredibly efficient because it tracks the whole HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any harm is done. It also maintains an incredibly detailed log of all attack attempts that contains more info than conventional Apache logs, so you can later analyze the data and take additional measures to boost the security of your sites if needed.

ModSecurity in Cloud Hosting

ModSecurity is offered with each and every cloud hosting plan which we offer and it's switched on by default for any domain or subdomain which you include through your Hepsia Control Panel. If it disrupts any of your applications or you'd like to disable it for any reason, you'll be able to do that through the ModSecurity section of Hepsia with simply a mouse click. You could also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but shall not take any action. You can view detailed logs in the exact same section, including the IP address where the attack originated from, what precisely the attacker attempted to do and at what time, what ModSecurity did, etc. For optimum safety of our clients we use a set of commercial firewall rules combined with custom ones that are provided by our system admins.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server solutions that we offer feature ModSecurity and since the firewall is switched on by default, any website that you create under a domain or a subdomain shall be secured immediately. An independent section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to stop and start the firewall for any site or enable a detection mode. With the last option, ModSecurity shall not take any action, but it will still detect possible attacks and shall keep all info in a log as if it were completely active. The logs can be found in the exact same section of the Control Panel and they include info about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules that we use on our web servers are a mix between commercial ones from a security company and custom ones made by our system admins. As a result, we offer greater security for your web apps as we can protect them from attacks before security firms release updates for completely new threats.

ModSecurity in VPS Servers

Safety is of the utmost importance to us, so we set up ModSecurity on all VPS servers which are set up with the Hepsia CP by default. The firewall can be managed via a dedicated section inside Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you will not need to do anything manually. You'll also be able to disable it or turn on the so-called detection mode, so it'll maintain a log of possible attacks that you can later analyze, but won't block them. The logs in both passive and active modes offer details regarding the type of the attack and how it was eliminated, what IP it came from and other valuable information that may help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Beyond the commercial rules which we get for ModSecurity from a third-party security enterprise, we also implement our own rules since occasionally we discover specific attacks which are not yet present within the commercial package. This way, we can easily enhance the security of your Virtual private server promptly instead of waiting for an official update.

ModSecurity in Dedicated Servers

If you opt to host your sites on a dedicated server with the Hepsia Control Panel, your web apps will be secured immediately since ModSecurity is provided with all Hepsia-based packages. You'll be able to manage the firewall with ease and if required, you will be able to turn it off or enable its passive mode when it will only maintain a log of what is taking place without taking any action to stop potential attacks. The logs which you'll find inside the same section of the CP are quite detailed and contain information about the attacker IP address, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so on. This info shall allow you to take measures and enhance the security of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our staff include when they recognize attacks that haven't yet been included inside the commercial pack.