ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is used to stop attacks towards script-driven websites through the use of security rules that contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even sites that aren't updated regularly. For example, a number of unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script will trigger certain rules, so ModSecurity will block these activities the minute it detects them. The firewall is incredibly efficient since it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any harm is done. It also keeps an exceptionally detailed log of all attack attempts which features more info than traditional Apache logs, so you can later analyze the data and take additional measures to boost the security of your sites if required.

ModSecurity in Website Hosting

We offer ModSecurity with all website hosting packages, so your Internet applications will be shielded from harmful attacks. The firewall is turned on as standard for all domains and subdomains, but in case you'd like, you'll be able to stop it using the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you shall discover within Hepsia are very detailed and offer data about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, and so on. We employ a group of commercial rules which are often updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our servers.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any application that you upload or install will be properly secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. An independent section inside Hepsia will permit you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information about intrusions, but doesn't take actions to stop them. What you shall see in the logs can help you to secure your sites better - the IP address an attack came from, what website was attacked and how, what ModSecurity rule was triggered, etcetera. With this data, you can see whether an Internet site needs an update, if you ought to block IPs from accessing your hosting server, etcetera. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones too when they find a new threat which is not yet a part of the commercial bundle.