ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's employed to prevent attacks against script-driven Internet sites through the use of security rules that contain particular expressions. That way, the firewall can stop hacking and spamming attempts and shield even Internet sites that aren't updated often. For instance, multiple unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the purpose to get access to the script shall trigger certain rules, so ModSecurity shall block out these activities the moment it detects them. The firewall is extremely efficient as it monitors the entire HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any harm is done. It also maintains an incredibly detailed log of all attack attempts which includes more information than standard Apache logs, so you could later examine the data and take further measures to improve the security of your sites if necessary.
ModSecurity in Shared Website Hosting
ModSecurity comes by default with all shared website hosting packages that we provide and it will be activated automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you can activate and deactivate it with only a click or set it to detection mode, so it will maintain a log of all attacks, but it will not do anything to prevent them. The log for each of your sites shall feature elaborate information such as the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are regularly updated and incorporate both commercial ones that we get from a third-party security company and custom ones our system administrators include in the event that they detect a new sort of attacks. In this way, the sites that you host here shall be way more secure with no action needed on your end.
ModSecurity in Semi-dedicated Hosting
Any web program that you install in your new semi-dedicated hosting account will be protected by ModSecurity as the firewall comes with all our hosting packages and is turned on by default for any domain and subdomain you include or create via your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated section in Hepsia where not only can you activate or deactivate it entirely, but you can also switch on a passive mode, so the firewall shall not block anything, but it will still keep a record of potential attacks. This requires only a click and you'll be able to see the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was dealt with, and so on. The firewall employs two sets of rules on our machines - a commercial one that we get from a third-party web security provider and a custom one that our admins update manually as to respond to recently discovered risks at the earliest opportunity.
ModSecurity in VPS
All virtual private servers that are set up with the Hepsia Control Panel include ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the web server, so there shall not be anything special which you'll have to do to protect your websites. It will take you a mouse click to stop ModSecurity if necessary or to activate its passive mode so that it records what happens without taking any actions to stop intrusions. You'll be able to see the logs created in passive or active mode from the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall used to take care of it, etc. We employ a mixture of commercial and custom rules in order to make certain that ModSecurity will prevent as many risks as possible, thus increasing the security of your web programs as much as possible.
ModSecurity in Dedicated Hosting
All of our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any app you upload or install shall be properly secured from the very beginning and you will not need to bother about common attacks or vulnerabilities. An individual section within Hepsia will permit you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you'll see in the logs shall enable you to to secure your sites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this data, you'll be able to see whether a site needs an update, whether you ought to block IPs from accessing your hosting server, etcetera. On top of the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too whenever they discover a new threat that's not yet a part of the commercial bundle.