ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and in case it discovers an intrusion attempt, it blocks it. The firewall furthermore maintains a more thorough log for the website visitors than any web server does, so you shall manage to keep an eye on what's going on with your sites a lot better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it identifies if somebody is attempting to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a certain command. In such situations these attempts trigger the corresponding rules and the firewall program hinders the attempts right away, then records in-depth details about them within its logs. ModSecurity is among the very best software firewalls on the market and it can protect your web apps against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Cloud Website Hosting

ModSecurity comes standard with all cloud website hosting plans which we supply and it will be turned on automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you can activate and deactivate it with a click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to prevent them. The log for each of your websites will contain elaborate info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are frequently updated and consist of both commercial ones we get from a third-party security company and custom ones which our system administrators add in the event that they detect a new kind of attacks. In this way, the sites you host here shall be way more secure with no action expected on your end.

ModSecurity in Semi-dedicated Servers

Any web application that you install in your new semi-dedicated server account will be protected by ModSecurity as the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain which you add or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section inside Hepsia where not simply could you activate or deactivate it fully, but you could also activate a passive mode, so the firewall won't stop anything, but it shall still keep an archive of potential attacks. This takes only a mouse click and you shall be able to look at the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall uses 2 sets of rules on our web servers - a commercial one which we get from a third-party web security firm and a custom one that our admins update manually as to respond to recently discovered threats as quickly as possible.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers that we offer and it shall be turned on automatically for any new domain or subdomain you add on the hosting server. In this way, any web application that you install will be secured right from the start without doing anything personally on your end. The firewall could be managed via the section of the Control Panel which bears the same name. This is the location whereyou can disable ModSecurity or activate its passive mode, so it shall not take any action against threats, but shall still maintain a comprehensive log. The recorded data is available inside the same area as well and you will be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules which we employ on our servers are a mixture between commercial ones that we obtain from a security organization and custom ones that are included by our administrators to optimize the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is available by default with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain that you create on the web server. Just in case that a web app doesn't work correctly, you can either disable the firewall or set it to function in passive mode. The second means that ModSecurity shall maintain a log of any potential attack that could happen, but will not take any action to prevent it. The logs generated in passive or active mode shall present you with additional details about the exact file that was attacked, the type of the attack and the IP it came from, etc. This info shall allow you to choose what actions you can take to enhance the security of your Internet sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules that we employ are updated regularly with a commercial pack from a third-party security provider we work with, but from time to time our admins add their own rules too in case they discover a new potential threat.