ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and in case it discovers an intrusion attempt, it blocks it. The firewall additionally keeps a more comprehensive log for the traffic than any web server does, so you shall manage to keep an eye on what's happening with your Internet sites a lot better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it detects whether somebody is trying to log in to the admin area of a specific script a number of times or if a request is sent to execute a file with a particular command. In these situations these attempts set off the corresponding rules and the firewall program hinders the attempts right away, and then records comprehensive info about them within its logs. ModSecurity is one of the very best software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Shared Web Hosting

We offer ModSecurity with all shared web hosting plans, so your web apps shall be protected against destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you shall be able to stop it using the respective area of your Hepsia CP. You can also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you will discover in Hepsia are quite detailed and include data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, and so on. We employ a group of commercial rules that are often updated, but sometimes our admins include custom rules as well so as to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

Any web program that you set up within your new semi-dedicated server account shall be protected by ModSecurity since the firewall is provided with all our hosting packages and is activated by default for any domain and subdomain that you add or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated area in Hepsia where not simply could you activate or deactivate it completely, but you could also activate a passive mode, so the firewall will not block anything, but it'll still keep a record of possible attacks. This takes only a click and you will be able to look at the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was handled, etc. The firewall uses 2 groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one which our admins update personally as to respond to recently discovered threats as quickly as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are set up with the Hepsia hosting CP, so your web programs shall be protected from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you can disable it with a mouse click from the corresponding section of Hepsia. You can also set it to function in detection mode, so it'll keep a detailed log of any possible attacks without taking any action to prevent them. The logs can be found in the exact same section and offer info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not just commercial rules from a business operating in the field of web security, but also custom ones our admins include manually so as to respond to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any application that you upload or install will be secured from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An individual section in Hepsia will allow you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall find in the logs shall allow you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, etc. With this data, you could see whether a website needs an update, whether you should block IPs from accessing your web server, etc. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too when they come across a new threat that's not yet in the commercial bundle.