ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the website visitors than any server does, so you shall manage to keep track of what is happening with your Internet sites better than if you rely only on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For example, it identifies whether somebody is attempting to log in to the admin area of a specific script several times or if a request is sent to execute a file with a specific command. In such circumstances these attempts set off the corresponding rules and the software blocks the attempts immediately, after that records detailed details about them within its logs. ModSecurity is amongst the most effective software firewalls out there and it can protect your web apps against many threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Web Hosting

ModSecurity comes by default with all web hosting plans that we offer and it shall be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and disable it with a click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites shall feature detailed info including the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules which we use are frequently updated and include both commercial ones which we get from a third-party security business and custom ones that our system admins add in case that they detect a new type of attacks. That way, the Internet sites which you host here will be way more protected without any action expected on your end.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages that we offer feature ModSecurity and because the firewall is turned on by default, any website which you create under a domain or a subdomain shall be protected right away. A separate section within the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to stop and start the firewall for any Internet site or enable a detection mode. With the latter, ModSecurity won't take any action, but it shall still detect possible attacks and shall keep all data in a log as if it were 100% active. The logs can be found within the same section of the Control Panel and they feature details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules that we employ on our machines are a mix of commercial ones from a security company and custom ones made by our system admins. As a result, we offer greater security for your web programs as we can shield them from attacks even before security companies release updates for brand new threats.

ModSecurity in VPS Servers

All VPS servers that are set up with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the server, so there won't be anything special that you'll have to do to protect your websites. It will take you only a click to stop ModSecurity if necessary or to activate its passive mode so that it records what occurs without taking any measures to prevent intrusions. You will be able to view the logs produced in passive or active mode via the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to handle it, and so forth. We employ a combination of commercial and custom rules so as to make certain that ModSecurity will stop as many risks as possible, consequently improving the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers which are set up with our Hepsia CP and you will not have to do anything specific on your end to employ it as it is switched on by default whenever you add a new domain or subdomain on your web server. In case it disrupts any of your apps, you shall be able to stop it through the respective part of Hepsia, or you could leave it in passive mode, so it will recognize attacks and will still keep a log for them, but shall not block them. You'll be able to examine the logs later to determine what you can do to boost the protection of your sites since you will find details such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, and so on. The rules which we employ are commercial, thus they're regularly updated by a security provider, but to be on the safe side, our administrators also include custom rules once in a while in order to deal with any new threats they have discovered.