ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and when it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the website visitors than any web server does, so you will manage to keep an eye on what's happening with your Internet sites much better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it recognizes whether someone is trying to log in to the administrator area of a given script multiple times or if a request is sent to execute a file with a particular command. In such situations these attempts set off the corresponding rules and the firewall software blocks the attempts instantly, and then records detailed information about them in its logs. ModSecurity is one of the very best software firewalls out there and it can easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Cloud Website Hosting

ModSecurity can be found with every cloud website hosting solution that we offer and it's switched on by default for any domain or subdomain that you include through your Hepsia Control Panel. In the event that it disrupts any of your programs or you would like to disable it for some reason, you shall be able to do that through the ModSecurity section of Hepsia with only a click. You may also activate a passive mode, so the firewall will detect potential attacks and keep a log, but will not take any action. You can view extensive logs in the very same section, including the IP where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etc. For maximum security of our clients we use a group of commercial firewall rules combined with custom ones that are included by our system admins.

ModSecurity in Semi-dedicated Servers

Any web application you install inside your new semi-dedicated server account will be protected by ModSecurity because the firewall comes with all our hosting plans and is switched on by default for any domain and subdomain you add or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated area in Hepsia where not simply can you activate or deactivate it completely, but you may also activate a passive mode, so the firewall shall not block anything, but it shall still keep a record of possible attacks. This requires just a click and you will be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall uses 2 sets of rules on our machines - a commercial one that we get from a third-party web security provider and a custom one that our administrators update manually as to respond to newly discovered threats at the earliest opportunity.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers that we offer and it'll be activated automatically for every new domain or subdomain you include on the machine. This way, any web application you install will be protected right from the start without doing anything personally on your end. The firewall could be managed via the section of the Control Panel which bears the same name. This is the location whereyou could switch off ModSecurity or activate its passive mode, so it will not take any action against threats, but shall still keep a thorough log. The recorded info is available inside the same section as well and you'll be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules we use on our servers are a mix between commercial ones which we obtain from a security company and custom ones which are added by our staff to improve the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers which are set up with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it as it's activated by default every time you include a new domain or subdomain on your hosting server. In case it disrupts some of your programs, you'll be able to stop it through the respective part of Hepsia, or you may leave it operating in passive mode, so it will identify attacks and shall still keep a log for them, but will not block them. You could look at the logs later to determine what you can do to boost the protection of your sites since you shall find details such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity reacted, etcetera. The rules we use are commercial, hence they are regularly updated by a security provider, but to be on the safe side, our staff also include custom rules once in a while as to respond to any new threats they have discovered.