ModSecurity

: Definitions; AAAA Records; Access Log Manager; Additional RAM; Administration Services; Advanced Tools; Email Aliases; Antivirus Protection; APC; Free Web Apps; Auto-responder Emails; Browsable Daily Backups; Catch-all Emails; CentOS; Live Chat Support; ClientExec Billing And Support Software; Genuine Cloud Architecture; CNAME Records; Hosting Control Panel; Hardware; CPanel Control Panel; CPU Share; Cron Jobs; Custom Error Pages; MX And A Records; Daily Data Back-up; Data Centers; Data Compression; Debian; Dedicated IP; Server Network Hardware; DirectAdmin Control Panel; Disk Space; Domain Backorders; DomainKeys Identified Mail; Domain Manager; Parked Domains; Domain Registration Transfer; Dreamweaver Compatibility; Dropbox Backups; Email Forwarding; Email Manager; Enom Domain Name Reseller Account; EPP Transfer Protection; Error Log Viewer; Extensive Online Documentation; Extra Dedicated IPs; File Manager; FTP Accounts; FTP Manager; Full DNS Management; WHOIS Management; Guaranteed RAM; Hepsia Control Panel; Hosted Domain Names; Hotlink Protection; Htaccess Generator; WHOIS Shield; Imagemagick And GD Library; InnoDB; Installation And Troubleshooting; Instant Account Activation; Integrated Ticketing System; IonCube; IP Blocking; JailHost; Email Accounts; Mailing Lists; Mailing List Members; Managed Services Package; Marketing Tools; Money Back Guarantee; Memcached; Microsoft FPE; ModSecurity; Monitoring And Rebooting; MySQL And Load Stats; 2.5 Gbit Network Connectivity; Data Corruption; Node.js; No Overselling; NS Records; One-Hour Response Guarantee; Perl Modules; Password Protected Directories; Perl; PostgreSQL Databases; PostgreSQL Database Storage; Phone Support; PHP 4 And PHP 5 Support; PhpMyAdmin; PhpPgAdmin; Python; RAID; Registrar Lock; Server Reselling Options; Server Side Includes; Shared SSL IP; SiteMap Generator; SMTP Server; Spam Filters; SPF Protection; MySQL Databases; MySQL Database Storage; SRV Records; Data Caching; SSL Certificate Generator; Stable Linux With Apache; Subdomains; Support; Monthly Traffic; TXT Records; Ubuntu; UPS And Diesel Back-up Generator; Hosting Server Uptime; URL Redirection; Varnish; VPN Traffic; Multiple Control Panels; Setup Fees; Multiple OS; Full Root-level Access; SSH Telnet; Web Accelerators; Online Website Builder; Web And FTP Statistics; Web Installer; Webmail; Assisted Website Migration; Website Manager; Free Website Templates; Weekly Backup; Weekly OS Update; Zend Optimizer; ZFS Mails And MySQL; Order

ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is employed to prevent attacks toward script-driven websites through the use of security rules which contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and protect even sites that are not updated often. As an example, several failed login attempts to a script admin area or attempts to execute a particular file with the objective to get access to the script will trigger specific rules, so ModSecurity will block these activities the instant it detects them. The firewall is incredibly efficient since it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any harm is done. It additionally keeps an incredibly detailed log of all attack attempts which includes more info than conventional Apache logs, so you could later examine the data and take additional measures to enhance the security of your Internet sites if required.

ModSecurity in Shared Hosting

We provide ModSecurity with all shared hosting solutions, so your Internet applications will be resistant to destructive attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you will be able to stop it via the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you will discover in Hepsia are quite detailed and include data about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, and so on. We use a range of commercial rules which are regularly updated, but sometimes our administrators add custom rules as well in order to better protect the sites hosted on our servers.