ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and when it identifies an intrusion attempt, it prevents it. The firewall additionally maintains a more comprehensive log for the website visitors than any web server does, so you'll be able to keep track of what's going on with your sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it detects whether anyone is trying to log in to the administrator area of a specific script several times or if a request is sent to execute a file with a particular command. In such circumstances these attempts trigger the corresponding rules and the firewall hinders the attempts right away, and then records in-depth details about them within its logs. ModSecurity is among the most effective software firewalls available and it can protect your web apps against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins often.

ModSecurity in Cloud Web Hosting

We offer ModSecurity with all cloud web hosting solutions, so your Internet applications shall be resistant to harmful attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you'll be able to stop it through the respective section of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you'll find within Hepsia are quite detailed and feature info about the nature of any attack, when it occurred and from what IP address, the firewall rule that was triggered, etc. We use a group of commercial rules which are regularly updated, but sometimes our administrators include custom rules as well in order to efficiently protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web application which you install in your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is included with all our hosting plans and is switched on by default for any domain and subdomain which you add or create using your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated section in Hepsia where not simply can you activate or deactivate it fully, but you may also activate a passive mode, so the firewall won't block anything, but it'll still maintain a record of possible attacks. This normally requires only a mouse click and you shall be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, etc. The firewall uses two groups of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our admins update manually as to respond to newly discovered risks as fast as possible.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting CP, so your web applications will be secured from the second your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if required, you can disable it with a click of your mouse through the corresponding section of Hepsia. You can also set it to work in detection mode, so it'll maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs can be found inside the same section and include details about the nature of the attack, what IP address it originated from and what ModSecurity rule was triggered to stop it. For optimum security, we employ not simply commercial rules from a firm operating in the field of web security, but also custom ones our admins add manually so as to react to new risks which are still not tackled in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain which you create on the server. In the event that a web app does not work properly, you may either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity shall keep a log of any potential attack that may take place, but will not take any action to stop it. The logs generated in active or passive mode will provide you with more details about the exact file that was attacked, the form of the attack and the IP it originated from, etcetera. This information shall allow you to choose what steps you can take to boost the safety of your Internet sites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules we use are updated constantly with a commercial pack from a third-party security enterprise we work with, but from time to time our staff add their own rules also when they find a new potential threat.