ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its overall performance and if it discovers an intrusion attempt, it blocks it. The firewall additionally keeps a more detailed log for the website visitors than any server does, so you will be able to monitor what is going on with your websites a lot better than if you rely only on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes if anyone is trying to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a certain command. In these situations these attempts set off the corresponding rules and the firewall blocks the attempts right away, then records detailed details about them within its logs. ModSecurity is one of the best software firewalls available and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting packages, so your Internet apps shall be protected against malicious attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you'll be able to stop it through the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you'll discover in Hepsia are very detailed and include info about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, and so forth. We employ a set of commercial rules which are frequently updated, but sometimes our admins add custom rules as well in order to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer include ModSecurity and because the firewall is enabled by default, any Internet site that you create under a domain or a subdomain will be secured right away. An individual section inside the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it will enable you to start and stop the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity won't take any action, but it'll still recognize possible attacks and will keep all information inside a log as if it were 100% active. The logs could be found in the same section of the CP and they include details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, etcetera. The security rules we employ on our servers are a mix between commercial ones from a security firm and custom ones made by our system administrators. Therefore, we offer greater security for your web programs as we can protect them from attacks before security businesses release updates for brand new threats.

ModSecurity in VPS

All virtual private servers which are set up with the Hepsia CP feature ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the web server, so there will not be anything special that you'll have to do to protect your websites. It'll take you a click to stop ModSecurity if needed or to turn on its passive mode so that it records what occurs without taking any actions to stop intrusions. You shall be able to see the logs produced in passive or active mode through the corresponding section of Hepsia and learn more about the type of the attack, where it came from, what rule the firewall employed to handle it, etcetera. We use a combination of commercial and custom rules so as to make sure that ModSecurity shall block as many risks as possible, consequently boosting the security of your web applications as much as possible.

ModSecurity in Dedicated Hosting

ModSecurity is offered as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain you create on the hosting server. In case that a web application doesn't operate properly, you may either turn off the firewall or set it to operate in passive mode. The second means that ModSecurity shall keep a log of any possible attack which could take place, but will not take any action to stop it. The logs generated in passive or active mode shall present you with more details about the exact file that was attacked, the form of the attack and the IP address it came from, and so forth. This data shall enable you to choose what steps you can take to increase the security of your Internet sites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we employ are updated often with a commercial pack from a third-party security enterprise we work with, but sometimes our staff add their own rules also when they discover a new potential threat.