ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to stop attacks toward script-driven sites by using security rules that contain certain expressions. This way, the firewall can stop hacking and spamming attempts and shield even Internet sites that aren't updated on a regular basis. For instance, multiple failed login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script shall trigger particular rules, so ModSecurity shall block these activities the minute it discovers them. The firewall is extremely efficient since it tracks the whole HTTP traffic to a site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It furthermore maintains an exceptionally thorough log of all attack attempts which contains more information than typical Apache logs, so you could later analyze the data and take further measures to enhance the security of your Internet sites if necessary.

ModSecurity in Shared Web Hosting

ModSecurity is provided with all shared web hosting web servers, so when you choose to host your websites with our business, they'll be shielded from a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any site if necessary, or to activate a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You'll be able to view specific logs through your Hepsia CP including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the safety of our clients' Internet sites very seriously, we use a set of commercial rules that we take from one of the top companies which maintain such rules. Our admins also include custom rules to make sure that your websites will be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting packages and if you opt to host your websites with our company, there shall not be anything special you will have to do since the firewall is switched on by default for all domains and subdomains which you add via your hosting Control Panel. If needed, you'll be able to disable ModSecurity for a certain website or switch on the so-called detection mode in which case the firewall shall still function and record data, but will not do anything to stop potential attacks on your Internet sites. Detailed logs shall be available in your CP and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, etc. We use 2 kinds of rules on our servers - commercial ones from an organization that operates in the field of web security, and customized ones that our administrators occasionally include to respond to newly discovered risks promptly.

ModSecurity in Dedicated Servers Hosting

If you opt to host your Internet sites on a dedicated server with the Hepsia CP, your web programs will be secured right away as ModSecurity is provided with all Hepsia-based packages. You shall be able to manage the firewall easily and if required, you will be able to turn it off or enable its passive mode when it will only maintain a log of what's occurring without taking any action to stop possible attacks. The logs which you'll find within the same section of the CP are really detailed and include info about the attacker IP address, what website and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etc. This info shall allow you to take measures and enhance the security of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins add when they identify attacks which haven't yet been included within the commercial pack.