ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is used to prevent attacks against script-driven websites by employing security rules which contain certain expressions. That way, the firewall can stop hacking and spamming attempts and preserve even websites which are not updated on a regular basis. As an example, multiple unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script will trigger certain rules, so ModSecurity will stop these activities the moment it detects them. The firewall is extremely efficient because it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any harm is done. It also maintains an incredibly comprehensive log of all attack attempts that contains more information than traditional Apache logs, so you can later check out the data and take extra measures to boost the security of your websites if needed.
ModSecurity in Website Hosting
We offer ModSecurity with all website hosting solutions, so your Internet apps shall be protected against malicious attacks. The firewall is switched on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you shall discover inside Hepsia are quite detailed and offer data about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, and so forth. We use a set of commercial rules that are regularly updated, but sometimes our administrators include custom rules as well in order to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
Any web program that you set up inside your new semi-dedicated hosting account will be protected by ModSecurity because the firewall is included with all our hosting plans and is turned on by default for any domain and subdomain which you add or create via your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section within Hepsia where not simply could you activate or deactivate it fully, but you may also switch on a passive mode, so the firewall shall not block anything, but it will still keep a record of potential attacks. This requires just a click and you will be able to see the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, and so forth. The firewall employs two groups of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one that our administrators update manually in order to respond to recently discovered risks as quickly as possible.
ModSecurity in VPS Hosting
Security is vital to us, so we set up ModSecurity on all virtual private servers that are set up with the Hepsia CP by default. The firewall can be managed through a dedicated section within Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you'll not have to do anything personally. You will also be able to deactivate it or turn on the so-called detection mode, so it will keep a log of potential attacks which you can later examine, but shall not block them. The logs in both passive and active modes include details about the form of the attack and how it was eliminated, what IP it came from and other useful info that might help you to tighten the security of your sites by updating them or blocking IPs, for example. Besides the commercial rules that we get for ModSecurity from a third-party security company, we also use our own rules as occasionally we find specific attacks that are not yet present inside the commercial group. This way, we can increase the security of your VPS in a timely manner instead of waiting for an official update.
ModSecurity in Dedicated Web Hosting
ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain you create on the server. In the event that a web app doesn't operate correctly, you can either turn off the firewall or set it to work in passive mode. The second means that ModSecurity shall keep a log of any potential attack that may happen, but shall not take any action to stop it. The logs created in active or passive mode shall offer you additional details about the exact file which was attacked, the form of the attack and the IP address it originated from, and so forth. This information will enable you to choose what actions you can take to improve the protection of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules that we employ are updated constantly with a commercial pack from a third-party security company we work with, but oftentimes our administrators include their own rules as well in case they come across a new potential threat.