ModSecurity

: Glossary; AAAA Records; Access Log Manager; Additional RAM; Administration Services; Advanced Tools; Email Aliases; Antivirus Protection; APC; App Installer; Auto-responder Emails; Browsable Daily Backups; Catch-all Emails; CentOS; Live Chat Support; ClientExec Billing And Support Software; Genuine Cloud Architecture; CNAME Records; Control Panel; Hardware; CPanel Control Panel; CPU Share; Cron Jobs; Custom Error Pages; MX And A Records; Daily Data Back-up; Data Centers; Data Compression; Debian; Dedicated IP Address; Server Network Hardware; DirectAdmin Control Panel; Disk Space; Domain Backorders; DomainKeys Identified Mail; Domain Manager; Parked Domains; Domain Registration Transfer; Dreamweaver Compatible; Dropbox Backups; Email Forwarding; Email Manager; Enom Domain Name Reseller Account; EPP Transfer Protection; Error Log Viewer; Extensive Online Documentation; Extra Dedicated IPs; File Manager; FTP Accounts; FTP Manager; Full DNS Management; Full WHOIS Management; Guaranteed RAM; Hepsia Control Panel; Domains Hosted; Hotlinking Protection; Htaccess Generator; WHOIS Privacy Protection; Imagemagick And GD Library; InnoDB; Installation And Troubleshooting; Integrated Ticketing System; IonCube; IP Blocking; JailHost; Email Accounts; Mailing Lists; Mailing List Members; Managed Services Package; Marketing Tools; Money Back Guarantee; Memcached; Microsoft FPE; ModSecurity; Monitoring And Rebooting; MySQL And Load Stats; 2.5 Gbit Network Connectivity; Data Corruption; Node.js; No Overselling; NS Records; One-Hour Response Guarantee; Perl Modules; Password Protected Directories; Perl Scripting; PostgreSQL Databases; PostgreSQL Database Storage; Phone Support; PHP 4 PHP 5 PHP 7 And PHP 8 Support; PhpMyAdmin; PhpPgAdmin; Python; RAID; Registrar Lock; Server Reselling Options; SSI; Shared SSL IP; SiteMap Generator; SMTP Server; Spam Filters; SPF Protection; MySQL Databases; MySQL Database Storage; SRV Records; Data Caching; SSL Certificate Generator; Stable Linux With Apache; Subdomains; Customer Support; Bandwidth; TXT Records; Ubuntu; UPS And Diesel Back-up Generator; Service Uptime Guarantee; URL Redirector; Varnish; VPN Traffic; Multiple Control Panels; Set-up Fee; Multiple OS; Full Root-level Access; SSH Telnet; Web Accelerators; Online Website Builder; Web And FTP Statistics; Web Installer; Webmail; Assisted Website Migration; Website Manager; Free Website Templates; Weekly Backup; Weekly OS Update; Zend Optimizer; ZFS Mails And MySQL; Get Started

ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to prevent attacks towards script-driven sites through the use of security rules that contain particular expressions. In this way, the firewall can stop hacking and spamming attempts and protect even websites that are not updated on a regular basis. For example, multiple failed login attempts to a script admin area or attempts to execute a particular file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the minute it discovers them. The firewall is quite efficient since it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any damage is done. It additionally maintains an exceptionally detailed log of all attack attempts which contains more info than standard Apache logs, so you can later analyze the data and take further measures to increase the security of your websites if required.

ModSecurity in Cloud Hosting

ModSecurity is available with every single cloud hosting solution which we offer and it is activated by default for every domain or subdomain that you include via your Hepsia CP. In the event that it disrupts any of your applications or you'd like to disable it for whatever reason, you will be able to achieve that through the ModSecurity section of Hepsia with only a click. You could also activate a passive mode, so the firewall will discover possible attacks and maintain a log, but shall not take any action. You'll be able to see extensive logs in the very same section, including the IP where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etc. For max security of our customers we use a set of commercial firewall rules mixed with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages that we offer come with ModSecurity and given that the firewall is enabled by default, any Internet site you build under a domain or a subdomain will be secured straight away. A separate section in the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll enable you to stop and start the firewall for any site or switch on a detection mode. With the last option, ModSecurity will not take any action, but it will still identify possible attacks and shall keep all information in a log as if it were completely active. The logs could be found within the very same section of the Control Panel and they offer info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so forth. The security rules we employ on our machines are a mix of commercial ones from a security business and custom ones created by our system administrators. For that reason, we offer higher security for your web applications as we can protect them from attacks before security companies release updates for new threats.

ModSecurity in VPS Servers

Security is vital to us, so we set up ModSecurity on all VPS servers which are made available with the Hepsia CP by default. The firewall can be managed through a dedicated section in Hepsia and is switched on automatically when you add a new domain or create a subdomain, so you'll not have to do anything manually. You shall also be able to disable it or activate the so-called detection mode, so it shall maintain a log of possible attacks you can later analyze, but shall not prevent them. The logs in both passive and active modes contain info about the kind of the attack and how it was eliminated, what IP address it originated from and other useful data which could help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. In addition to the commercial rules that we get for ModSecurity from a third-party security enterprise, we also implement our own rules as once in a while we find specific attacks which are not yet present within the commercial pack. This way, we could enhance the protection of your VPS promptly as opposed to waiting for a certified update.

ModSecurity in Dedicated Servers

If you opt to host your websites on a dedicated server with the Hepsia Control Panel, your web apps will be secured right from the start as ModSecurity is provided with all Hepsia-based plans. You shall be able to regulate the firewall without difficulty and if required, you will be able to turn it off or enable its passive mode when it'll only keep a log of what is happening without taking any action to stop possible attacks. The logs that you will find in the very same section of the CP are quite detailed and include data about the attacker IP, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This info shall enable you to take measures and improve the protection of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our administrators add every time they recognize attacks which haven't yet been included in the commercial pack.