ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's employed to prevent attacks toward script-driven websites through the use of security rules that contain certain expressions. That way, the firewall can block hacking and spamming attempts and preserve even websites that are not updated regularly. For instance, a number of failed login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script will trigger certain rules, so ModSecurity shall block these activities the moment it detects them. The firewall is incredibly efficient since it screens the entire HTTP traffic to a website in real time without slowing it down, so it can easily prevent an attack before any harm is done. It furthermore maintains a very thorough log of all attack attempts which contains more info than conventional Apache logs, so you can later examine the data and take additional measures to enhance the security of your sites if needed.

ModSecurity in Cloud Hosting

ModSecurity comes standard with all cloud hosting plans which we provide and it'll be activated automatically for any domain or subdomain which you add/create inside your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and deactivate it with simply a click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to prevent them. The log for each of your websites shall contain in-depth info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and include both commercial ones that we get from a third-party security business and custom ones our system admins add in case that they detect a new sort of attacks. In this way, the sites that you host here shall be far more protected without any action required on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server plans and if you opt to host your websites with us, there won't be anything special you'll need to do as the firewall is switched on by default for all domains and subdomains which you include through your hosting CP. If needed, you could disable ModSecurity for a particular site or turn on the so-called detection mode in which case the firewall shall still operate and record data, but will not do anything to prevent possible attacks on your sites. Detailed logs will be accessible in your CP and you will be able to see what type of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks came from, and so forth. We employ two sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and customized ones that our administrators often include to respond to newly discovered risks promptly.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you will not need to do anything specific on your end to use it because it's switched on by default every time you include a new domain or subdomain on your hosting server. In the event that it disrupts some of your programs, you'll be able to stop it via the respective part of Hepsia, or you could leave it in passive mode, so it will recognize attacks and will still keep a log for them, but won't stop them. You could look at the logs later to learn what you can do to enhance the security of your websites since you will find information such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity responded, etcetera. The rules which we employ are commercial, therefore they are regularly updated by a security provider, but to be on the safe side, our administrators also add custom rules every now and then as to deal with any new threats they have identified.