ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's employed to stop attacks against script-driven sites by employing security rules which contain certain expressions. This way, the firewall can stop hacking and spamming attempts and shield even websites which aren't updated regularly. As an example, multiple failed login attempts to a script administrator area or attempts to execute a certain file with the intention to get access to the script will trigger particular rules, so ModSecurity will block out these activities the minute it identifies them. The firewall is extremely efficient because it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it could prevent an attack before any damage is done. It furthermore maintains an exceptionally comprehensive log of all attack attempts which includes more info than traditional Apache logs, so you could later analyze the data and take additional measures to increase the security of your sites if required.
ModSecurity in Shared Hosting
ModSecurity comes by default with all shared hosting plans which we offer and it'll be switched on automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and disable it with only a mouse click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your websites will include detailed info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are constantly updated and include both commercial ones which we get from a third-party security firm and custom ones that our system admins include in the event that they detect a new sort of attacks. This way, the Internet sites which you host here shall be a lot more secure with no action needed on your end.
ModSecurity in Semi-dedicated Servers
Any web application you install in your new semi-dedicated server account shall be protected by ModSecurity because the firewall is included with all our hosting plans and is turned on by default for any domain and subdomain which you add or create via your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it completely, but you may also enable a passive mode, so the firewall won't stop anything, but it'll still keep an archive of possible attacks. This takes only a mouse click and you'll be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, and so on. The firewall employs two groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one which our administrators update manually in order to respond to recently discovered threats as fast as possible.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting CP, so your web apps will be protected from the instant your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you can deactivate it with a mouse click from the corresponding section of Hepsia. You can also set it to function in detection mode, so it shall maintain an extensive log of any potential attacks without taking any action to stop them. The logs are available in the exact same section and provide information about the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For maximum security, we use not simply commercial rules from a company operating in the field of web security, but also custom ones that our admins include personally in order to respond to new threats which are still not dealt with in the commercial rules.
ModSecurity in Dedicated Servers
When you opt to host your websites on a dedicated server with the Hepsia CP, your web apps will be secured straight away as ModSecurity is available with all Hepsia-based packages. You'll be able to manage the firewall without difficulty and if needed, you will be able to turn it off or activate its passive mode when it shall only maintain a log of what is taking place without taking any action to prevent potential attacks. The logs which you will find in the very same section of the CP are incredibly detailed and feature data about the attacker IP address, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etc. This data shall enable you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our staff include every time they recognize attacks that have not yet been included inside the commercial pack.