ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the website visitors than any web server does, so you'll be able to monitor what is going on with your sites much better than if you rely simply on standard logs. ModSecurity works with security rules based on which it prevents attacks. For instance, it detects whether somebody is attempting to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a certain command. In such cases these attempts trigger the corresponding rules and the firewall program blocks the attempts immediately, after that records in-depth info about them inside its logs. ModSecurity is among the most effective software firewalls available and it can protect your web applications against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Shared Web Hosting

ModSecurity comes standard with all shared web hosting plans which we offer and it will be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you can activate and disable it with only a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to prevent them. The log for any of your Internet sites will include comprehensive information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules which we use are constantly updated and incorporate both commercial ones which we get from a third-party security company and custom ones our system admins add in case that they detect a new sort of attacks. In this way, the sites that you host here will be a lot more protected with no action expected on your end.

ModSecurity in Semi-dedicated Servers

We've integrated ModSecurity as a standard in all semi-dedicated server products, so your web apps shall be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts shall permit you to activate or disable the firewall for any Internet site with a click. You shall also have the ability to activate a passive detection mode with which ModSecurity will maintain a log of possible attacks without actually stopping them. The detailed logs include the nature of the attack and what ModSecurity response this attack triggered, where it came from, etcetera. The list of rules which we employ is regularly updated in order to match any new risks that may appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones that our administrators add if they find a threat which is not present inside the commercial list yet.

ModSecurity in VPS Servers

All VPS servers which are provided with the Hepsia CP feature ModSecurity. The firewall is set up and turned on by default for all domains that are hosted on the server, so there shall not be anything special which you'll have to do to protect your Internet sites. It'll take you a click to stop ModSecurity if necessary or to activate its passive mode so that it records what happens without taking any steps to prevent intrusions. You will be able to look at the logs produced in active or passive mode from the corresponding section of Hepsia and discover more about the form of the attack, where it came from, what rule the firewall employed to deal with it, and so forth. We employ a combination of commercial and custom rules so as to make sure that ModSecurity shall prevent as many risks as possible, hence increasing the security of your web programs as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are integrated with our Hepsia CP and you won't have to do anything specific on your end to employ it as it's switched on by default each time you include a new domain or subdomain on your server. In the event that it interferes with some of your applications, you shall be able to stop it through the respective area of Hepsia, or you can leave it working in passive mode, so it'll detect attacks and shall still maintain a log for them, but shall not prevent them. You can examine the logs later to learn what you can do to enhance the security of your Internet sites since you will find information such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity reacted, and so forth. The rules we employ are commercial, thus they are frequently updated by a security company, but to be on the safe side, our administrators also add custom rules once in a while as to respond to any new threats they have identified.