ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and in case it detects an intrusion attempt, it blocks it. The firewall additionally maintains a more thorough log for the traffic than any server does, so you shall be able to monitor what's going on with your sites much better than if you rely merely on standard logs. ModSecurity works with security rules based on which it prevents attacks. For example, it identifies if someone is trying to log in to the administrator area of a specific script several times or if a request is sent to execute a file with a specific command. In such circumstances these attempts set off the corresponding rules and the firewall software hinders the attempts immediately, after that records detailed details about them within its logs. ModSecurity is amongst the most effective software firewalls on the market and it could easily protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Hosting

We provide ModSecurity with all hosting packages, so your Internet apps shall be shielded from destructive attacks. The firewall is turned on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will find in Hepsia are quite detailed and offer info about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, etc. We employ a range of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

We've included ModSecurity by default inside all semi-dedicated hosting products, so your web apps shall be protected whenever you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will permit you to switch on or disable the firewall for any Internet site with a click. You shall also have the ability to activate a passive detection mode through which ModSecurity will keep a log of possible attacks without actually stopping them. The comprehensive logs include the nature of the attack and what ModSecurity response this attack generated, where it came from, etcetera. The list of rules we employ is frequently updated as to match any new risks which may appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones which our administrators add if they discover a threat that's not present inside the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting CP, so your web programs shall be protected from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if needed, you'll be able to deactivate it with a mouse click through the corresponding section of Hepsia. You can also set it to work in detection mode, so it shall keep a comprehensive log of any possible attacks without taking any action to prevent them. The logs can be found inside the same section and offer information regarding the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For maximum security, we use not just commercial rules from a firm working in the field of web security, but also custom ones our administrators include manually so as to react to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers Hosting

ModSecurity comes with all dedicated servers that are integrated with our Hepsia CP and you'll not have to do anything specific on your end to employ it because it is switched on by default each time you include a new domain or subdomain on your web server. If it interferes with any of your applications, you'll be able to stop it via the respective part of Hepsia, or you could leave it operating in passive mode, so it'll identify attacks and will still maintain a log for them, but will not stop them. You can examine the logs later to learn what you can do to enhance the safety of your websites as you will find details such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity responded, etc. The rules that we use are commercial, hence they are constantly updated by a security company, but to be on the safe side, our administrators also add custom rules every now and then as to react to any new threats they have found.