ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is employed to prevent attacks towards script-driven websites by employing security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and shield even websites which aren't updated frequently. As an example, numerous unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the second it identifies them. The firewall is incredibly efficient because it screens the entire HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally maintains an incredibly comprehensive log of all attack attempts which contains more information than standard Apache logs, so you could later examine the data and take further measures to improve the security of your websites if necessary.

ModSecurity in Shared Web Hosting

ModSecurity is available with each and every shared web hosting package that we provide and it is switched on by default for any domain or subdomain which you add via your Hepsia CP. If it disrupts any of your apps or you would like to disable it for any reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with simply a mouse click. You may also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but will not take any action. You can see extensive logs in the very same section, including the IP where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, and so on. For optimum protection of our customers we use a set of commercial firewall rules blended with custom ones which are provided by our system administrators.

ModSecurity in VPS Servers

Protection is essential to us, so we set up ModSecurity on all VPS servers that are provided with the Hepsia Control Panel as a standard. The firewall could be managed via a dedicated section inside Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't have to do anything manually. You'll also be able to disable it or turn on the so-called detection mode, so it'll keep a log of potential attacks you can later study, but won't block them. The logs in both passive and active modes contain info regarding the form of the attack and how it was prevented, what IP it originated from and other important info that might help you to tighten the security of your websites by updating them or blocking IPs, as an example. On top of the commercial rules which we get for ModSecurity from a third-party security firm, we also use our own rules since every now and then we detect specific attacks that aren't yet present within the commercial group. That way, we can boost the security of your Virtual private server promptly as opposed to waiting for a certified update.

ModSecurity in Dedicated Servers

If you choose to host your sites on a dedicated server with the Hepsia CP, your web applications shall be protected straight away because ModSecurity is supplied with all Hepsia-based solutions. You'll be able to manage the firewall with ease and if necessary, you will be able to turn it off or activate its passive mode when it shall only maintain a log of what is going on without taking any action to stop possible attacks. The logs which you can find within the same section of the Control Panel are incredibly detailed and contain details about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, and so forth. This information will permit you to take measures and enhance the security of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our admins add when they identify attacks that haven't yet been included in the commercial pack.