ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall furthermore maintains a more comprehensive log for the traffic than any web server does, so you'll be able to monitor what is going on with your Internet sites much better than if you rely only on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects if anyone is attempting to log in to the admin area of a certain script a number of times or if a request is sent to execute a file with a certain command. In such cases these attempts set off the corresponding rules and the firewall software blocks the attempts right away, then records in-depth details about them in its logs. ModSecurity is among the very best software firewalls on the market and it could easily protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

ModSecurity comes standard with all shared hosting packages which we offer and it'll be activated automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to switch on and deactivate it with simply a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it will not do anything to stop them. The log for any of your websites shall contain elaborate information including the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are constantly updated and comprise of both commercial ones which we get from a third-party security company and custom ones our system administrators include in case that they detect a new kind of attacks. This way, the Internet sites you host here shall be far more protected without any action expected on your end.

ModSecurity in Semi-dedicated Servers

Any web app that you install in your new semi-dedicated server account will be protected by ModSecurity since the firewall comes with all our hosting solutions and is switched on by default for any domain and subdomain that you include or create using your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it fully, but you can also enable a passive mode, so the firewall won't block anything, but it will still maintain a record of potential attacks. This requires only a click and you shall be able to look at the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, and so forth. The firewall uses two sets of rules on our servers - a commercial one which we get from a third-party web security firm and a custom one which our admins update manually in order to respond to recently discovered threats as fast as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting CP, so your web apps shall be protected from the instant your server is in a position. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you could disable it with a click through the corresponding section of Hepsia. You may also set it to function in detection mode, so it will maintain an extensive log of any potential attacks without taking any action to prevent them. The logs are available in the very same section and offer information regarding the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For maximum security, we use not simply commercial rules from a company operating in the field of web security, but also custom ones our admins include manually so as to respond to new risks that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers that are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program that you upload or install will be protected from the very beginning and you will not need to worry about common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you shall see in the logs can easily help you to secure your sites better - the IP an attack came from, what site was attacked and exactly how, what ModSecurity rule was triggered, etcetera. With this data, you could see whether a site needs an update, if you should block IPs from accessing your server, etc. Aside from the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones as well if they discover a new threat that's not yet a part of the commercial bundle.