ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is employed to prevent attacks towards script-driven sites by using security rules which contain specific expressions. This way, the firewall can prevent hacking and spamming attempts and protect even Internet sites which aren't updated regularly. For instance, numerous unsuccessful login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script shall trigger certain rules, so ModSecurity shall block out these activities the second it discovers them. The firewall is very efficient as it tracks the entire HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any damage is done. It furthermore keeps an exceptionally detailed log of all attack attempts which features more information than standard Apache logs, so you can later check out the data and take additional measures to increase the security of your websites if necessary.

ModSecurity in Web Hosting

ModSecurity is available with every web hosting package that we offer and it is switched on by default for any domain or subdomain that you add through your Hepsia CP. In case it interferes with any of your programs or you'd like to disable it for any reason, you'll be able to achieve that through the ModSecurity section of Hepsia with just a click. You can also use a passive mode, so the firewall will detect possible attacks and keep a log, but will not take any action. You can view comprehensive logs in the very same section, including the IP where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, and so forth. For maximum protection of our clients we use a group of commercial firewall rules mixed with custom ones which are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting solutions and if you opt to host your sites with our company, there won't be anything special you will have to do since the firewall is activated by default for all domains and subdomains you add through your hosting Control Panel. If needed, you'll be able to disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall will still operate and record information, but will not do anything to prevent potential attacks on your websites. Comprehensive logs shall be readily available within your CP and you'll be able to see what sort of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, and so on. We employ 2 sorts of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones that our admins often add to respond to newly identified threats promptly.

ModSecurity in Dedicated Hosting

If you decide to host your websites on a dedicated server with the Hepsia Control Panel, your web applications shall be protected right away because ModSecurity is supplied with all Hepsia-based plans. You'll be able to manage the firewall with ease and if required, you will be able to turn it off or enable its passive mode when it shall only keep a log of what's happening without taking any action to stop possible attacks. The logs that you will find inside the very same section of the CP are extremely detailed and contain information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so on. This data will allow you to take measures and enhance the protection of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our admins include whenever they identify attacks that haven't yet been included within the commercial pack.