ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its performance and if it discovers an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the traffic than any server does, so you'll manage to keep track of what is going on with your Internet sites much better than if you rely only on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it recognizes whether somebody is trying to log in to the administration area of a specific script several times or if a request is sent to execute a file with a certain command. In such circumstances these attempts trigger the corresponding rules and the software blocks the attempts right away, after that records detailed info about them inside its logs. ModSecurity is among the most effective software firewalls on the market and it could easily protect your web apps against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Website Hosting

We provide ModSecurity with all website hosting solutions, so your web applications shall be protected against destructive attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you'll be able to stop it via the respective section of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you shall find in Hepsia are extremely detailed and feature info about the nature of any attack, when it occurred and from what IP address, the firewall rule that was triggered, and so forth. We employ a set of commercial rules which are frequently updated, but sometimes our admins include custom rules as well in order to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

Any web app you install within your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is provided with all our hosting solutions and is activated by default for any domain and subdomain which you include or create through your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated area within Hepsia where not only can you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall will not stop anything, but it'll still keep a record of potential attacks. This requires just a click and you will be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, and so on. The firewall uses 2 sets of rules on our machines - a commercial one which we get from a third-party web security company and a custom one that our admins update personally as to respond to newly discovered risks at the earliest opportunity.

ModSecurity in VPS Web Hosting

All virtual private servers that are provided with the Hepsia CP come with ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the web server, so there shall not be anything special which you'll have to do to protect your Internet sites. It shall take you only a mouse click to stop ModSecurity if necessary or to switch on its passive mode so that it records what goes on without taking any steps to stop intrusions. You'll be able to look at the logs created in active or passive mode through the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall used to take care of it, etcetera. We use a mixture of commercial and custom rules in order to make certain that ModSecurity will block out as many risks as possible, consequently enhancing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers Hosting

All of our dedicated servers that are installed with the Hepsia hosting Control Panel feature ModSecurity, so any program that you upload or set up shall be secured from the very beginning and you will not have to concern yourself with common attacks or vulnerabilities. An individual section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you will discover in the logs shall allow you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, etc. With this information, you could see whether an Internet site needs an update, if you ought to block IPs from accessing your hosting server, etcetera. On top of the third-party commercial security rules for ModSecurity which we use, our admins add custom ones as well when they find a new threat that is not yet in the commercial bundle.