ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and in case it discovers an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the traffic than any server does, so you'll manage to keep an eye on what is happening with your Internet sites a lot better than if you rely only on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it detects whether somebody is attempting to log in to the administration area of a particular script multiple times or if a request is sent to execute a file with a specific command. In these cases these attempts set off the corresponding rules and the firewall software blocks the attempts instantly, after that records in-depth details about them within its logs. ModSecurity is one of the very best software firewalls on the market and it can easily protect your web applications against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Web Hosting

We offer ModSecurity with all web hosting packages, so your Internet applications will be resistant to destructive attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it through the respective area of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you'll find inside Hepsia are very detailed and include data about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, and so forth. We employ a range of commercial rules which are regularly updated, but sometimes our admins add custom rules as well in order to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

Any web program you install within your new semi-dedicated server account shall be protected by ModSecurity since the firewall is provided with all our hosting plans and is switched on by default for any domain and subdomain you include or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section within Hepsia where not simply can you activate or deactivate it entirely, but you may also enable a passive mode, so the firewall will not stop anything, but it shall still maintain an archive of possible attacks. This normally requires only a click and you will be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was dealt with, etc. The firewall uses two groups of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one that our administrators update personally in order to respond to recently discovered risks as fast as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting CP, so your web programs will be secured from the moment your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you'll be able to disable it with a mouse click via the corresponding section of Hepsia. You could also set it to work in detection mode, so it will keep an extensive log of any possible attacks without taking any action to prevent them. The logs can be found in the very same section and include information regarding the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For best security, we employ not simply commercial rules from a company operating in the field of web security, but also custom ones which our admins add personally in order to react to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

All our dedicated servers which are installed with the Hepsia hosting CP come with ModSecurity, so any app you upload or set up will be protected from the very beginning and you'll not have to worry about common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you will see in the logs shall allow you to to secure your websites better - the IP an attack originated from, what site was attacked as well as how, what ModSecurity rule was triggered, and so on. With this data, you can see whether a site needs an update, whether you ought to block IPs from accessing your server, etcetera. In addition to the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too when they find a new threat that's not yet in the commercial bundle.