ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its overall performance and in case it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more thorough log for the traffic than any server does, so you will be able to keep an eye on what's happening with your sites much better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it prevents attacks. For instance, it recognizes whether someone is attempting to log in to the administration area of a specific script a number of times or if a request is sent to execute a file with a specific command. In such circumstances these attempts set off the corresponding rules and the firewall blocks the attempts right away, then records in-depth info about them in its logs. ModSecurity is one of the very best software firewalls available and it can protect your web apps against many threats and vulnerabilities, particularly if you don’t update them or their plugins often.

ModSecurity in Cloud Website Hosting

ModSecurity can be found with each cloud website hosting plan that we provide and it's switched on by default for any domain or subdomain which you include through your Hepsia CP. In case it disrupts any of your applications or you'd like to disable it for any reason, you'll be able to do that through the ModSecurity section of Hepsia with only a click. You may also activate a passive mode, so the firewall will recognize possible attacks and maintain a log, but will not take any action. You can view detailed logs in the very same section, including the IP where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so on. For max protection of our clients we use a group of commercial firewall rules mixed with custom ones which are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages which we offer come with ModSecurity and given that the firewall is switched on by default, any website you create under a domain or a subdomain will be secured straight away. An independent section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll enable you to stop and start the firewall for any Internet site or activate a detection mode. With the last option, ModSecurity won't take any action, but it'll still detect possible attacks and shall keep all information in a log as if it were fully active. The logs can be found inside the very same section of the CP and they offer details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules that we use on our servers are a mix of commercial ones from a security business and custom ones created by our system administrators. Consequently, we offer increased security for your web applications as we can defend them from attacks even before security firms release updates for brand new threats.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are provided with the Hepsia hosting Control Panel, so your web programs will be protected from the second your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if necessary, you'll be able to deactivate it with a mouse click through the corresponding section of Hepsia. You can also set it to work in detection mode, so it shall maintain an extensive log of any possible attacks without taking any action to prevent them. The logs can be found within the same section and include details about the nature of the attack, what IP address it originated from and what ModSecurity rule was initiated to stop it. For maximum security, we employ not simply commercial rules from a business operating in the field of web security, but also custom ones our admins include personally in order to respond to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers which are set up with our Hepsia CP and you won't need to do anything specific on your end to use it because it is activated by default every time you add a new domain or subdomain on your web server. In the event that it interferes with some of your apps, you will be able to stop it via the respective section of Hepsia, or you may leave it in passive mode, so it'll identify attacks and shall still maintain a log for them, but shall not block them. You'll be able to examine the logs later to find out what you can do to boost the safety of your Internet sites as you'll find information such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity reacted, etcetera. The rules we employ are commercial, hence they're frequently updated by a security provider, but to be on the safe side, our admins also include custom rules once in a while in order to respond to any new threats they have discovered.