ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and if it detects an intrusion attempt, it blocks it. The firewall additionally keeps a more thorough log for the site visitors than any web server does, so you shall manage to keep track of what's happening with your Internet sites better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it prevents attacks. For example, it recognizes whether anyone is attempting to log in to the administration area of a given script several times or if a request is sent to execute a file with a particular command. In such circumstances these attempts trigger the corresponding rules and the firewall program blocks the attempts in real time, after that records in-depth information about them in its logs. ModSecurity is among the most effective software firewalls on the market and it could easily protect your web applications against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting solutions, so your Internet applications shall be protected against harmful attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective area of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you shall discover within Hepsia are quite detailed and include information about the nature of any attack, when it occurred and from what IP address, the firewall rule that was triggered, etcetera. We use a set of commercial rules which are frequently updated, but sometimes our admins include custom rules as well in order to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages which we offer feature ModSecurity and since the firewall is enabled by default, any Internet site that you create under a domain or a subdomain shall be protected immediately. An individual section within the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall permit you to start and stop the firewall for any site or switch on a detection mode. With the last mentioned, ModSecurity will not take any action, but it shall still identify possible attacks and will keep all info in a log as if it were completely active. The logs could be found in the very same section of the Control Panel and they include info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, etcetera. The security rules which we use on our servers are a mix between commercial ones from a security firm and custom ones created by our system administrators. Consequently, we offer higher security for your web programs as we can protect them from attacks even before security businesses release updates for completely new threats.

ModSecurity in VPS Servers

Security is extremely important to us, so we set up ModSecurity on all VPS servers which are made available with the Hepsia CP as a standard. The firewall could be managed via a dedicated section within Hepsia and is switched on automatically when you add a new domain or create a subdomain, so you'll not have to do anything manually. You will also be able to deactivate it or switch on the so-called detection mode, so it will keep a log of potential attacks which you can later examine, but will not stop them. The logs in both passive and active modes offer info about the form of the attack and how it was stopped, what IP it originated from and other useful data which could help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Beyond the commercial rules that we get for ModSecurity from a third-party security company, we also use our own rules since every now and then we detect specific attacks which aren't yet present inside the commercial group. This way, we can easily boost the protection of your Virtual private server promptly instead of awaiting an official update.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any app you upload or set up will be secured from the very beginning and you will not need to stress about common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you shall see in the logs can easily help you to secure your sites better - the IP address an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, and so forth. With this data, you can see if an Internet site needs an update, if you should block IPs from accessing your hosting server, etcetera. Besides the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones as well every time they find a new threat which is not yet included in the commercial bundle.