ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's employed to prevent attacks against script-driven websites by employing security rules that contain particular expressions. That way, the firewall can stop hacking and spamming attempts and protect even sites that aren't updated on a regular basis. For example, numerous failed login attempts to a script administrative area or attempts to execute a particular file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the moment it detects them. The firewall is extremely efficient because it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily prevent an attack before any harm is done. It furthermore maintains a very thorough log of all attack attempts that contains more info than conventional Apache logs, so you could later examine the data and take additional measures to increase the security of your websites if needed.
ModSecurity in Shared Web Hosting
We offer ModSecurity with all shared web hosting packages, so your web applications will be shielded from malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you will be able to stop it using the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you'll find within Hepsia are incredibly detailed and include info about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etc. We employ a group of commercial rules that are regularly updated, but sometimes our administrators include custom rules as well so as to better protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting plans and if you opt to host your sites with us, there shall not be anything special you'll need to do as the firewall is activated by default for all domains and subdomains which you add via your hosting CP. If necessary, you can disable ModSecurity for a particular Internet site or turn on the so-called detection mode in which case the firewall shall still operate and record info, but won't do anything to stop potential attacks against your sites. Comprehensive logs will be available inside your Control Panel and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so on. We employ 2 sorts of rules on our servers - commercial ones from a company which operates in the field of web security, and customized ones that our admins often add to respond to newly identified risks on time.
ModSecurity in VPS Hosting
All virtual private servers which are set up with the Hepsia CP include ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the machine, so there won't be anything special that you'll have to do to protect your Internet sites. It'll take you simply a mouse click to stop ModSecurity if necessary or to switch on its passive mode so that it records what occurs without taking any actions to prevent intrusions. You shall be able to see the logs generated in active or passive mode from the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall used to take care of it, etcetera. We use a combination of commercial and custom rules so as to make certain that ModSecurity will stop as many threats as possible, consequently increasing the security of your web programs as much as possible.
ModSecurity in Dedicated Web Hosting
When you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured immediately because ModSecurity is provided with all Hepsia-based solutions. You shall be able to regulate the firewall easily and if needed, you'll be able to turn it off or enable its passive mode when it shall only keep a log of what's going on without taking any action to stop possible attacks. The logs which you will find inside the same section of the CP are incredibly detailed and contain info about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, etcetera. This data shall permit you to take measures and enhance the protection of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our staff add every time they identify attacks that haven't yet been included within the commercial pack.