ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is used to stop attacks toward script-driven websites by employing security rules that contain certain expressions. This way, the firewall can stop hacking and spamming attempts and shield even websites which aren't updated often. For instance, numerous unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the objective to get access to the script will trigger certain rules, so ModSecurity shall block these activities the moment it detects them. The firewall is very efficient as it monitors the whole HTTP traffic to an Internet site in real time without slowing it down, so it could prevent an attack before any damage is done. It also maintains an incredibly thorough log of all attack attempts which contains more info than traditional Apache logs, so you can later examine the data and take further measures to improve the security of your websites if required.

ModSecurity in Shared Hosting

ModSecurity comes standard with all shared hosting plans which we offer and it'll be turned on automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you could switch on and deactivate it with just a click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to prevent them. The log for any of your Internet sites shall feature in-depth info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are frequently updated and comprise of both commercial ones we get from a third-party security company and custom ones our system administrators add in the event that they detect a new kind of attacks. This way, the websites that you host here will be way more protected without any action expected on your end.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting plans and if you choose to host your Internet sites with our company, there shall not be anything special you'll need to do since the firewall is activated by default for all domains and subdomains that you add using your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a given site or activate the so-called detection mode in which case the firewall shall still operate and record information, but will not do anything to prevent possible attacks against your Internet sites. In depth logs shall be available in your Control Panel and you shall be able to see what type of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks came from, etcetera. We use two sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and customized ones which our admins sometimes add to respond to newly discovered risks in a timely manner.

ModSecurity in Dedicated Web Hosting

If you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web applications will be protected straight away because ModSecurity is provided with all Hepsia-based packages. You will be able to manage the firewall effortlessly and if required, you'll be able to turn it off or switch on its passive mode when it'll only maintain a log of what is taking place without taking any action to prevent potential attacks. The logs which you can find inside the same section of the CP are extremely detailed and include details about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This info shall enable you to take measures and enhance the protection of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our staff add when they identify attacks that haven't yet been included within the commercial pack.