ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and if it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the website visitors than any server does, so you shall manage to keep track of what is happening with your sites much better than if you rely only on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects if someone is attempting to log in to the administration area of a certain script several times or if a request is sent to execute a file with a certain command. In such instances these attempts trigger the corresponding rules and the firewall hinders the attempts in real time, then records comprehensive info about them inside its logs. ModSecurity is one of the most effective software firewalls on the market and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Shared Website Hosting

We offer ModSecurity with all shared website hosting packages, so your web applications shall be shielded from harmful attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you will be able to stop it via the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you'll discover in Hepsia are incredibly detailed and offer data about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so on. We use a range of commercial rules that are constantly updated, but sometimes our admins include custom rules as well in order to efficiently protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server plans and if you choose to host your sites with us, there will not be anything special you'll have to do given that the firewall is turned on by default for all domains and subdomains you include via your hosting CP. If required, you'll be able to disable ModSecurity for a certain site or enable the so-called detection mode in which case the firewall will still function and record data, but shall not do anything to prevent possible attacks against your sites. Detailed logs will be readily available inside your CP and you shall be able to see what type of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, etcetera. We employ two sorts of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones which our administrators occasionally add to respond to newly identified risks in a timely manner.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers that we offer and it shall be switched on automatically for any new domain or subdomain that you include on the machine. This way, any web app you install will be secured right from the start without doing anything manually on your end. The firewall could be managed from the section of the Control Panel that bears the same name. This is the location in whichyou could disable ModSecurity or let its passive mode, so it will not take any action against threats, but shall still maintain a thorough log. The recorded info is available in the same area as well and you shall be able to see what IPs any attacks originated from to enable you to stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we use on our servers are a blend between commercial ones that we obtain from a security organization and custom ones which are added by our admins to optimize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Servers

All of our dedicated servers which are installed with the Hepsia hosting CP feature ModSecurity, so any application that you upload or set up shall be protected from the very beginning and you will not need to bother about common attacks or vulnerabilities. An individual section within Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you'll discover in the logs can easily allow you to to secure your Internet sites better - the IP an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, etc. With this data, you could see if a site needs an update, if you should block IPs from accessing your server, and so on. On top of the third-party commercial security rules for ModSecurity which we use, our admins include custom ones as well every time they discover a new threat that is not yet in the commercial bundle.