ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's employed to stop attacks against script-driven sites through the use of security rules which contain specific expressions. This way, the firewall can stop hacking and spamming attempts and protect even sites that are not updated often. For instance, numerous failed login attempts to a script admin area or attempts to execute a certain file with the intention to get access to the script will trigger certain rules, so ModSecurity shall block these activities the minute it discovers them. The firewall is extremely efficient since it monitors the whole HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It furthermore keeps a very comprehensive log of all attack attempts which contains more info than conventional Apache logs, so you could later analyze the data and take additional measures to improve the security of your sites if necessary.
ModSecurity in Cloud Website Hosting
We offer ModSecurity with all cloud website hosting
packages, so your Internet applications shall be protected against destructive attacks. The firewall is activated by default for all domains and subdomains, but if you'd like, you'll be able to stop it through the respective area of your Hepsia CP. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you shall find inside Hepsia are quite detailed and offer information about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, etcetera. We employ a group of commercial rules which are often updated, but sometimes our administrators include custom rules as well in order to efficiently protect the sites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
Any web application that you install inside your new semi-dedicated hosting
account will be protected by ModSecurity as the firewall comes with all our hosting plans and is activated by default for any domain and subdomain which you add or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section in Hepsia where not only could you activate or deactivate it completely, but you can also switch on a passive mode, so the firewall shall not block anything, but it will still maintain an archive of potential attacks. This requires simply a click and you shall be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was addressed, and so on. The firewall uses two groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one which our administrators update personally in order to respond to recently discovered threats as soon as possible.
ModSecurity in VPS Web Hosting
All virtual private servers
which are set up with the Hepsia CP feature ModSecurity. The firewall is installed and switched on by default for all domains that are hosted on the web server, so there won't be anything special which you will have to do to protect your sites. It'll take you just a mouse click to stop ModSecurity if required or to switch on its passive mode so that it records what goes on without taking any actions to stop intrusions. You shall be able to look at the logs generated in passive or active mode via the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall used to handle it, etc. We use a combination of commercial and custom rules in order to make certain that ModSecurity will stop as many risks as possible, hence increasing the protection of your web programs as much as possible.