ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and if it discovers an intrusion attempt, it prevents it. The firewall also maintains a more comprehensive log for the website visitors than any web server does, so you'll be able to keep track of what's happening with your websites a lot better than if you rely only on conventional logs. ModSecurity works with security rules based on which it prevents attacks. For instance, it recognizes whether someone is attempting to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a certain command. In these instances these attempts trigger the corresponding rules and the software hinders the attempts instantly, after that records in-depth details about them in its logs. ModSecurity is amongst the best software firewalls on the market and it could easily protect your web apps against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Hosting

We offer ModSecurity with all hosting solutions, so your Internet applications will be resistant to malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you would like, you shall be able to stop it via the respective area of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you'll find inside Hepsia are incredibly detailed and include data about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, and so forth. We use a set of commercial rules which are frequently updated, but sometimes our admins add custom rules as well in order to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

Any web application you set up within your new semi-dedicated server account shall be protected by ModSecurity since the firewall comes with all our hosting packages and is turned on by default for any domain and subdomain that you add or create using your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated area in Hepsia where not simply could you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall won't stop anything, but it shall still maintain an archive of possible attacks. This takes simply a mouse click and you shall be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall uses two sets of rules on our machines - a commercial one that we get from a third-party web security company and a custom one that our admins update personally as to respond to recently discovered risks at the earliest opportunity.

ModSecurity in VPS Servers

All VPS servers which are provided with the Hepsia Control Panel feature ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the server, so there won't be anything special that you shall have to do to protect your websites. It'll take you only a click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any measures to prevent intrusions. You'll be able to view the logs generated in active or passive mode from the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to deal with it, and so on. We use a mixture of commercial and custom rules so as to ensure that ModSecurity shall block as many threats as possible, consequently increasing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers

All of our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any app which you upload or install shall be properly secured from the very beginning and you will not have to stress about common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you'll discover in the logs shall allow you to to secure your websites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, etc. With this information, you can see if a site needs an update, whether you ought to block IPs from accessing your web server, and so forth. Aside from the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones as well when they come across a new threat that is not yet in the commercial bundle.