ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and in case it identifies an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the site visitors than any server does, so you will manage to monitor what is happening with your websites a lot better than if you rely only on standard logs. ModSecurity uses security rules based on which it prevents attacks. For example, it identifies whether anyone is trying to log in to the administration area of a particular script several times or if a request is sent to execute a file with a certain command. In such situations these attempts set off the corresponding rules and the software blocks the attempts right away, then records detailed info about them inside its logs. ModSecurity is among the very best software firewalls out there and it could easily protect your web apps against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Hosting

We provide ModSecurity with all hosting plans, so your web apps shall be protected against malicious attacks. The firewall is turned on as standard for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you shall discover in Hepsia are very detailed and include info about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etc. We employ a group of commercial rules which are constantly updated, but sometimes our admins include custom rules as well so as to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server solutions which we offer come with ModSecurity and given that the firewall is turned on by default, any site that you create under a domain or a subdomain shall be secured straight away. An independent section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall permit you to stop and start the firewall for any Internet site or enable a detection mode. With the last option, ModSecurity will not take any action, but it will still detect possible attacks and will keep all info in a log as if it were 100% active. The logs could be found in the very same section of the Control Panel and they include information about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules which we employ on our machines are a mix between commercial ones from a security firm and custom ones developed by our system admins. Consequently, we provide higher security for your web apps as we can shield them from attacks even before security corporations release updates for brand new threats.

ModSecurity in VPS Servers

Protection is essential to us, so we set up ModSecurity on all VPS servers which are set up with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section in Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you will not need to do anything manually. You shall also be able to deactivate it or turn on the so-called detection mode, so it'll keep a log of possible attacks you can later analyze, but won't prevent them. The logs in both passive and active modes offer information regarding the form of the attack and how it was stopped, what IP address it came from and other useful info which could help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. On top of the commercial rules we get for ModSecurity from a third-party security enterprise, we also employ our own rules as from time to time we detect specific attacks which aren't yet present within the commercial pack. This way, we could improve the protection of your Virtual private server in a timely manner instead of waiting for an official update.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you will not need to do anything specific on your end to use it because it is switched on by default every time you add a new domain or subdomain on your hosting server. In the event that it disrupts some of your applications, you will be able to stop it through the respective part of Hepsia, or you may leave it operating in passive mode, so it shall identify attacks and will still maintain a log for them, but shall not block them. You may look at the logs later to determine what you can do to enhance the protection of your sites as you will find info such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity responded, and so on. The rules that we use are commercial, therefore they're constantly updated by a security provider, but to be on the safe side, our staff also include custom rules once in a while in order to react to any new threats they have discovered.