ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is employed to prevent attacks toward script-driven websites through the use of security rules that contain specific expressions. This way, the firewall can block hacking and spamming attempts and shield even sites that aren't updated on a regular basis. For instance, a number of failed login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script shall trigger particular rules, so ModSecurity shall stop these activities the moment it discovers them. The firewall is very efficient since it monitors the whole HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It also keeps an incredibly comprehensive log of all attack attempts which features more information than traditional Apache logs, so you can later check out the data and take further measures to increase the security of your websites if necessary.
ModSecurity in Website Hosting
ModSecurity is supplied with all website hosting
servers, so if you decide to host your sites with our business, they'll be resistant to an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you will have to do on your end. You will be able to stop ModSecurity for any site if required, or to activate a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You shall be able to view specific logs through your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. As we take the safety of our clients' websites very seriously, we use a set of commercial rules that we take from one of the top companies which maintain this type of rules. Our admins also add custom rules to ensure that your websites will be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Servers
Any web app that you set up within your new semi-dedicated server
account shall be protected by ModSecurity since the firewall comes with all our hosting solutions and is switched on by default for any domain and subdomain you include or create via your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not only could you activate or deactivate it fully, but you can also switch on a passive mode, so the firewall won't stop anything, but it shall still keep a record of possible attacks. This requires just a mouse click and you will be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, etcetera. The firewall employs two groups of rules on our machines - a commercial one which we get from a third-party web security company and a custom one that our admins update personally as to respond to newly discovered threats as quickly as possible.
ModSecurity in Dedicated Servers
All our dedicated servers
that are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program you upload or install shall be properly secured from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records information about intrusions, but doesn't take actions to stop them. What you'll see in the logs can easily help you to secure your websites better - the IP an attack came from, what website was attacked and how, what ModSecurity rule was triggered, etcetera. With this info, you can see whether an Internet site needs an update, whether you should block IPs from accessing your server, etc. Besides the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well if they discover a new threat which is not yet included in the commercial bundle.