ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is employed to prevent attacks towards script-driven websites through the use of security rules that contain particular expressions. This way, the firewall can block hacking and spamming attempts and shield even Internet sites that aren't updated frequently. For example, multiple failed login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the moment it detects them. The firewall is incredibly efficient because it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It furthermore maintains a very thorough log of all attack attempts which includes more information than traditional Apache logs, so you can later analyze the data and take further measures to enhance the security of your Internet sites if needed.
ModSecurity in Shared Hosting
ModSecurity is available on all shared hosting web servers, so if you decide to host your Internet sites with our business, they will be resistant to a wide range of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you shall need to do on your end. You'll be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so all activity shall be recorded, but the firewall won't take any real action. You will be able to view detailed logs via your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. Since we take the security of our clients' Internet sites seriously, we use a collection of commercial rules which we take from one of the best companies which maintain this kind of rules. Our admins also include custom rules to ensure that your websites will be resistant to as many risks as possible.
ModSecurity in Semi-dedicated Servers
ModSecurity is part of our semi-dedicated server plans and if you choose to host your websites with us, there won't be anything special you'll need to do as the firewall is switched on by default for all domains and subdomains you add using your hosting Control Panel. If necessary, you could disable ModSecurity for a certain website or activate the so-called detection mode in which case the firewall shall still operate and record data, but won't do anything to prevent potential attacks against your Internet sites. Detailed logs shall be readily available within your CP and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, etcetera. We employ two types of rules on our servers - commercial ones from a company which operates in the field of web security, and customized ones that our administrators often add to respond to newly found risks in a timely manner.
ModSecurity in Dedicated Servers
All our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program you upload or install will be protected from the very beginning and you'll not need to worry about common attacks or vulnerabilities. A separate section inside Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you will discover in the logs can help you to secure your sites better - the IP an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, etcetera. With this data, you can see if a website needs an update, if you need to block IPs from accessing your server, etcetera. On top of the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too every time they discover a new threat that's not yet included in the commercial bundle.