ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is employed to stop attacks toward script-driven sites through the use of security rules that contain specific expressions. In this way, the firewall can prevent hacking and spamming attempts and shield even websites that aren't updated often. For instance, numerous unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script shall trigger specific rules, so ModSecurity shall block out these activities the second it identifies them. The firewall is quite efficient because it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any harm is done. It also keeps an incredibly thorough log of all attack attempts which features more information than standard Apache logs, so you could later check out the data and take additional measures to enhance the security of your sites if necessary.

ModSecurity in Cloud Web Hosting

ModSecurity is supplied with all cloud web hosting machines, so if you decide to host your websites with our organization, they will be resistant to an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you will need to do on your end. You will be able to stop ModSecurity for any site if required, or to switch on a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You will be able to view detailed logs via your Hepsia CP including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. As we take the protection of our clients' Internet sites very seriously, we employ a set of commercial rules which we take from one of the top firms that maintain such rules. Our admins also include custom rules to ensure that your websites shall be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting packages and if you decide to host your sites with us, there shall not be anything special you'll have to do as the firewall is switched on by default for all domains and subdomains which you include using your hosting CP. If necessary, you could disable ModSecurity for a given Internet site or activate the so-called detection mode in which case the firewall will still function and record information, but won't do anything to prevent possible attacks on your Internet sites. Thorough logs shall be available in your Control Panel and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etc. We use 2 sorts of rules on our servers - commercial ones from a business which operates in the field of web security, and custom ones that our administrators occasionally include to respond to newly discovered risks promptly.

ModSecurity in VPS Web Hosting

All virtual private servers that are set up with the Hepsia Control Panel include ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the web server, so there shall not be anything special which you shall have to do to protect your Internet sites. It will take you only a click to stop ModSecurity if required or to turn on its passive mode so that it records what occurs without taking any measures to prevent intrusions. You'll be able to see the logs produced in active or passive mode from the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to take care of it, etcetera. We employ a mixture of commercial and custom rules so as to make certain that ModSecurity shall block out as many threats as possible, hence increasing the security of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

When you decide to host your sites on a dedicated server with the Hepsia CP, your web applications will be secured right away since ModSecurity is provided with all Hepsia-based plans. You'll be able to manage the firewall with ease and if necessary, you shall be able to turn it off or activate its passive mode when it shall only maintain a log of what's happening without taking any action to prevent possible attacks. The logs which you can find in the very same section of the Control Panel are really detailed and include data about the attacker IP address, what site and file were attacked and in what way, what rule the firewall used to stop the intrusion, etc. This info will allow you to take measures and improve the security of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff include every time they detect attacks that haven't yet been included inside the commercial pack.