ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is employed to prevent attacks toward script-driven websites through the use of security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and preserve even Internet sites that aren't updated on a regular basis. For example, numerous failed login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script will trigger certain rules, so ModSecurity shall stop these activities the second it detects them. The firewall is extremely efficient because it monitors the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It additionally keeps an incredibly thorough log of all attack attempts that contains more info than standard Apache logs, so you could later analyze the data and take extra measures to improve the security of your sites if required.
ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting solutions which we supply and it will be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to activate and deactivate it with simply a click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your Internet sites shall contain in-depth information including the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are constantly updated and incorporate both commercial ones that we get from a third-party security firm and custom ones our system administrators add in case that they detect a new sort of attacks. That way, the websites that you host here will be far more protected without any action required on your end.
ModSecurity in Semi-dedicated Hosting
Any web app that you install within your new semi-dedicated hosting account will be protected by ModSecurity since the firewall is provided with all our hosting plans and is turned on by default for any domain and subdomain you add or create through your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section in Hepsia where not only can you activate or deactivate it entirely, but you could also enable a passive mode, so the firewall shall not stop anything, but it shall still keep an archive of potential attacks. This normally requires simply a mouse click and you'll be able to see the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, and so forth. The firewall employs 2 sets of rules on our machines - a commercial one that we get from a third-party web security provider and a custom one that our admins update personally as to respond to newly discovered risks as fast as possible.
ModSecurity in VPS
Protection is vital to us, so we install ModSecurity on all virtual private servers that are provided with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section within Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you'll not have to do anything by hand. You shall also be able to disable it or turn on the so-called detection mode, so it shall keep a log of possible attacks which you can later study, but won't stop them. The logs in both passive and active modes include info about the type of the attack and how it was prevented, what IP address it came from and other useful data which may help you to tighten the security of your websites by updating them or blocking IPs, for example. On top of the commercial rules we get for ModSecurity from a third-party security firm, we also implement our own rules because every now and then we discover specific attacks which aren't yet present within the commercial package. That way, we could increase the security of your VPS instantly instead of waiting for a certified update.
ModSecurity in Dedicated Hosting
If you decide to host your sites on a dedicated server with the Hepsia CP, your web apps will be secured straight away as ModSecurity is available with all Hepsia-based packages. You shall be able to control the firewall without difficulty and if needed, you will be able to turn it off or enable its passive mode when it shall only maintain a log of what is taking place without taking any action to stop potential attacks. The logs that you'll find in the very same section of the Control Panel are extremely detailed and include information about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This information will allow you to take measures and increase the security of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our staff include whenever they recognize attacks which have not yet been included inside the commercial pack.