ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's employed to stop attacks against script-driven Internet sites by using security rules that contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even websites which are not updated on a regular basis. For instance, a number of failed login attempts to a script administrator area or attempts to execute a particular file with the purpose to get access to the script will trigger certain rules, so ModSecurity shall block these activities the minute it detects them. The firewall is extremely efficient as it tracks the whole HTTP traffic to a website in real time without slowing it down, so it will be able to stop an attack before any damage is done. It also maintains an incredibly comprehensive log of all attack attempts that features more information than typical Apache logs, so you could later check out the data and take further measures to increase the security of your websites if required.

ModSecurity in Shared Hosting

ModSecurity is offered with each and every shared hosting plan that we offer and it's turned on by default for every domain or subdomain which you include through your Hepsia CP. If it disrupts any of your programs or you would like to disable it for whatever reason, you'll be able to do that through the ModSecurity area of Hepsia with just a mouse click. You could also activate a passive mode, so the firewall will recognize potential attacks and keep a log, but will not take any action. You could see comprehensive logs in the very same section, including the IP where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so on. For maximum safety of our customers we use a collection of commercial firewall rules combined with custom ones which are provided by our system admins.

ModSecurity in Semi-dedicated Servers

Any web program that you install inside your new semi-dedicated server account will be protected by ModSecurity as the firewall is included with all our hosting plans and is turned on by default for any domain and subdomain that you include or create through your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated section in Hepsia where not only could you activate or deactivate it completely, but you could also activate a passive mode, so the firewall shall not stop anything, but it will still maintain a record of possible attacks. This requires only a mouse click and you will be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, and so on. The firewall uses 2 groups of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one which our administrators update manually as to respond to newly discovered risks immediately.

ModSecurity in Dedicated Servers

When you opt to host your Internet sites on a dedicated server with the Hepsia CP, your web apps shall be protected right away since ModSecurity is supplied with all Hepsia-based packages. You shall be able to regulate the firewall without difficulty and if needed, you will be able to turn it off or switch on its passive mode when it will only maintain a log of what is going on without taking any action to prevent possible attacks. The logs which you can find within the exact same section of the CP are very detailed and contain data about the attacker IP, what website and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, and so on. This info will permit you to take measures and improve the security of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our admins add every time they recognize attacks that haven't yet been included inside the commercial pack.