ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and if it identifies an intrusion attempt, it prevents it. The firewall furthermore maintains a more detailed log for the traffic than any server does, so you'll manage to monitor what is going on with your websites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it identifies whether someone is attempting to log in to the administration area of a certain script several times or if a request is sent to execute a file with a specific command. In these situations these attempts trigger the corresponding rules and the firewall program blocks the attempts in real time, after that records comprehensive information about them within its logs. ModSecurity is one of the most effective software firewalls on the market and it could easily protect your web applications against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Website Hosting

ModSecurity can be found with each shared website hosting plan which we provide and it's turned on by default for every domain or subdomain which you include through your Hepsia CP. In case it interferes with any of your applications or you would like to disable it for some reason, you shall be able to achieve that through the ModSecurity section of Hepsia with only a click. You may also enable a passive mode, so the firewall will detect possible attacks and maintain a log, but won't take any action. You'll be able to see detailed logs in the same section, including the IP where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, and so forth. For optimum safety of our clients we use a group of commercial firewall rules blended with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity as a standard in all semi-dedicated server packages, so your web apps shall be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will allow you to switch on or turn off the firewall for any Internet site with a click. You will also have the ability to turn on a passive detection mode through which ModSecurity will keep a log of possible attacks without actually preventing them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack generated, where it came from, etc. The list of rules that we employ is regularly updated as to match any new risks that may appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones which our admins add in the event that they discover a threat that is not present inside the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting Control Panel, so your web apps shall be secured from the instant your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if needed, you could deactivate it with a mouse click from the corresponding section of Hepsia. You could also set it to function in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs are available inside the exact same section and offer info about the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For best security, we use not simply commercial rules from a business operating in the field of web security, but also custom ones that our admins add personally in order to react to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it because it is enabled by default whenever you add a new domain or subdomain on your web server. In case it disrupts any of your programs, you'll be able to stop it via the respective area of Hepsia, or you can leave it operating in passive mode, so it will identify attacks and will still maintain a log for them, but won't stop them. You could examine the logs later to learn what you can do to enhance the security of your Internet sites since you shall find details such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity reacted, etc. The rules which we use are commercial, hence they're constantly updated by a security firm, but to be on the safe side, our admins also add custom rules occasionally in order to react to any new threats they have found.