ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall also maintains a more comprehensive log for the traffic than any server does, so you shall be able to monitor what is happening with your websites better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it identifies whether someone is attempting to log in to the admin area of a particular script multiple times or if a request is sent to execute a file with a particular command. In such circumstances these attempts trigger the corresponding rules and the firewall blocks the attempts instantly, then records detailed details about them inside its logs. ModSecurity is among the very best software firewalls on the market and it could easily protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Shared Web Hosting

We provide ModSecurity with all shared web hosting solutions, so your Internet applications will be shielded from harmful attacks. The firewall is switched on as standard for all domains and subdomains, but if you would like, you shall be able to stop it through the respective area of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you shall discover in Hepsia are very detailed and feature data about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, etcetera. We use a set of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to efficiently protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer come with ModSecurity and since the firewall is switched on by default, any website that you create under a domain or a subdomain will be protected right away. An individual section inside the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it'll permit you to start and stop the firewall for any website or activate a detection mode. With the last option, ModSecurity won't take any action, but it'll still recognize possible attacks and shall keep all data within a log as if it were fully active. The logs could be found within the same section of the Control Panel and they offer specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules that we employ on our servers are a mix between commercial ones from a security company and custom ones made by our system admins. Consequently, we offer increased security for your web apps as we can shield them from attacks even before security businesses release updates for completely new threats.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting CP, so your web programs shall be protected from the second your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if required, you'll be able to deactivate it with a click via the corresponding section of Hepsia. You could also set it to work in detection mode, so it will keep a detailed log of any potential attacks without taking any action to stop them. The logs are available within the very same section and provide details about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For maximum security, we employ not just commercial rules from a firm operating in the field of web security, but also custom ones which our administrators add manually in order to respond to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are set up with our Hepsia CP and you will not need to do anything specific on your end to use it as it is activated by default whenever you include a new domain or subdomain on your web server. In case it disrupts some of your applications, you shall be able to stop it through the respective part of Hepsia, or you may leave it in passive mode, so it shall detect attacks and shall still keep a log for them, but will not block them. You could look at the logs later to learn what you can do to boost the safety of your Internet sites since you will find details such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, and so on. The rules which we employ are commercial, hence they're regularly updated by a security firm, but to be on the safe side, our staff also add custom rules once in a while in order to respond to any new threats they have identified.