ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its performance and in case it discovers an intrusion attempt, it prevents it. The firewall furthermore maintains a more comprehensive log for the website visitors than any server does, so you'll be able to keep track of what is going on with your sites better than if you rely simply on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it detects if someone is attempting to log in to the administration area of a certain script multiple times or if a request is sent to execute a file with a particular command. In such cases these attempts trigger the corresponding rules and the software hinders the attempts immediately, then records detailed details about them in its logs. ModSecurity is one of the most effective software firewalls on the market and it could easily protect your web apps against many threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

We provide ModSecurity with all shared hosting packages, so your Internet apps shall be shielded from malicious attacks. The firewall is activated by default for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you'll find in Hepsia are extremely detailed and offer data about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, etcetera. We employ a range of commercial rules that are frequently updated, but sometimes our admins include custom rules as well in order to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages which we offer come with ModSecurity and given that the firewall is turned on by default, any website which you set up under a domain or a subdomain shall be secured right from the start. An independent section within the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to start and stop the firewall for any website or switch on a detection mode. With the last option, ModSecurity won't take any action, but it'll still identify possible attacks and shall keep all data in a log as if it were 100% active. The logs could be found within the exact same section of the Control Panel and they offer details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules which we employ on our servers are a mix of commercial ones from a security business and custom ones created by our system admins. As a result, we offer greater security for your web apps as we can defend them from attacks even before security corporations release updates for brand new threats.

ModSecurity in VPS Servers

Safety is vital to us, so we install ModSecurity on all VPS servers which are provided with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section inside Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you won't have to do anything by hand. You'll also be able to deactivate it or activate the so-called detection mode, so it shall keep a log of possible attacks which you can later analyze, but won't stop them. The logs in both passive and active modes include details about the type of the attack and how it was stopped, what IP address it originated from and other important data which might help you to tighten the security of your websites by updating them or blocking IPs, for instance. In addition to the commercial rules which we get for ModSecurity from a third-party security company, we also employ our own rules since every now and then we discover specific attacks which are not yet present in the commercial group. This way, we could enhance the protection of your Virtual private server right away rather than waiting for an official update.

ModSecurity in Dedicated Servers

If you choose to host your Internet sites on a dedicated server with the Hepsia CP, your web apps will be protected immediately as ModSecurity is supplied with all Hepsia-based plans. You'll be able to control the firewall effortlessly and if necessary, you shall be able to turn it off or enable its passive mode when it will only maintain a log of what's occurring without taking any action to prevent possible attacks. The logs that you will find in the exact same section of the CP are extremely detailed and include information about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so forth. This information will allow you to take measures and improve the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our admins add when they detect attacks which have not yet been included within the commercial pack.