ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It's used to stop attacks toward script-driven Internet sites by employing security rules which contain particular expressions. In this way, the firewall can block hacking and spamming attempts and protect even websites which are not updated frequently. For example, several unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the objective to get access to the script shall trigger certain rules, so ModSecurity shall block out these activities the minute it detects them. The firewall is incredibly efficient because it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it could prevent an attack before any damage is done. It also keeps an incredibly comprehensive log of all attack attempts which contains more info than typical Apache logs, so you can later analyze the data and take additional measures to improve the security of your websites if required.

ModSecurity in Shared Web Hosting

ModSecurity is supplied with all shared web hosting machines, so if you decide to host your websites with our organization, they shall be protected against a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you shall have to do on your end. You will be able to stop ModSecurity for any site if needed, or to activate a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You shall be able to view detailed logs through your Hepsia Control Panel including the IP address where the attack came from, what the attacker wished to do and how ModSecurity handled the threat. Since we take the safety of our clients' websites very seriously, we employ a set of commercial rules which we take from one of the best companies that maintain such rules. Our administrators also add custom rules to ensure that your Internet sites will be resistant to as many threats as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you choose to host your Internet sites with our company, there won't be anything special you'll have to do given that the firewall is activated by default for all domains and subdomains that you add through your hosting Control Panel. If needed, you could disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall will still function and record data, but shall not do anything to prevent possible attacks on your websites. In depth logs will be available within your Control Panel and you'll be able to see what sort of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks came from, etcetera. We employ two kinds of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones which our admins sometimes add to respond to newly found threats on time.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you will not need to do anything specific on your end to use it since it's enabled by default every time you add a new domain or subdomain on your server. In case it interferes with any of your programs, you shall be able to stop it through the respective part of Hepsia, or you may leave it working in passive mode, so it will detect attacks and will still maintain a log for them, but will not prevent them. You can analyze the logs later to find out what you can do to increase the security of your websites as you shall find info such as where an intrusion attempt originated from, what Internet site was attacked and based on what rule ModSecurity responded, and so on. The rules which we employ are commercial, thus they're constantly updated by a security company, but to be on the safe side, our administrators also add custom rules from time to time in order to deal with any new threats they have identified.