ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its performance and in case it detects an intrusion attempt, it prevents it. The firewall furthermore maintains a more comprehensive log for the traffic than any server does, so you'll manage to keep an eye on what is going on with your Internet sites much better than if you rely only on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it detects if anyone is attempting to log in to the administration area of a given script several times or if a request is sent to execute a file with a specific command. In such cases these attempts trigger the corresponding rules and the software blocks the attempts in real time, after that records comprehensive information about them inside its logs. ModSecurity is among the very best software firewalls on the market and it can protect your web applications against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Web Hosting

We provide ModSecurity with all web hosting plans, so your web applications will be shielded from malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you shall be able to stop it via the respective area of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you will find inside Hepsia are very detailed and include information about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, and so on. We use a group of commercial rules that are regularly updated, but sometimes our administrators add custom rules as well so as to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

We have included ModSecurity by default inside all semi-dedicated server packages, so your web apps shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts shall permit you to activate or disable the firewall for any website with a mouse click. You'll also have the ability to switch on a passive detection mode through which ModSecurity will keep a log of possible attacks without actually preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack activated, where it came from, etcetera. The list of rules which we employ is regularly updated as to match any new threats which could appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones which our administrators add in the event that they find a threat which is not present inside the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting Control Panel, so your web programs will be protected from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if needed, you'll be able to deactivate it with a click through the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs can be found inside the exact same section and offer info about the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For best security, we use not simply commercial rules from a company working in the field of web security, but also custom ones that our admins include manually so as to react to new risks that are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

If you opt to host your websites on a dedicated server with the Hepsia CP, your web programs will be protected right away since ModSecurity is provided with all Hepsia-based solutions. You will be able to manage the firewall with ease and if necessary, you'll be able to turn it off or activate its passive mode when it shall only keep a log of what's going on without taking any action to stop potential attacks. The logs that you'll find inside the exact same section of the Control Panel are really detailed and feature information about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so forth. This data shall enable you to take measures and improve the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our administrators include when they identify attacks that have not yet been included inside the commercial pack.