ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its functionality and if it identifies an intrusion attempt, it blocks it. The firewall additionally keeps a more detailed log for the traffic than any server does, so you shall be able to keep track of what is going on with your Internet sites a lot better than if you rely merely on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it identifies if someone is attempting to log in to the administration area of a specific script several times or if a request is sent to execute a file with a certain command. In such cases these attempts set off the corresponding rules and the firewall software blocks the attempts instantly, and then records detailed information about them inside its logs. ModSecurity is one of the most effective software firewalls available and it can easily protect your web apps against many threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.

ModSecurity in Web Hosting

ModSecurity is supplied with all web hosting web servers, so when you opt to host your Internet sites with our business, they'll be resistant to a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you will have to do on your end. You shall be able to stop ModSecurity for any site if needed, or to enable a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs via your Hepsia CP including the IP where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the security of our customers' sites very seriously, we use a selection of commercial rules that we get from one of the leading firms that maintain such rules. Our admins also add custom rules to make certain that your Internet sites shall be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Servers

Any web program that you set up within your new semi-dedicated server account shall be protected by ModSecurity as the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain you include or create through your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated area within Hepsia where not simply can you activate or deactivate it completely, but you can also activate a passive mode, so the firewall won't block anything, but it shall still keep a record of potential attacks. This normally requires just a mouse click and you will be able to see the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, and so forth. The firewall uses 2 sets of rules on our servers - a commercial one that we get from a third-party web security company and a custom one that our administrators update manually as to respond to newly discovered threats as fast as possible.

ModSecurity in VPS Servers

Protection is vital to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia CP as a standard. The firewall can be managed via a dedicated section in Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you will not have to do anything manually. You shall also be able to deactivate it or turn on the so-called detection mode, so it will keep a log of potential attacks that you can later examine, but shall not block them. The logs in both passive and active modes offer info about the type of the attack and how it was prevented, what IP it originated from and other valuable information that may help you to tighten the security of your sites by updating them or blocking IPs, for instance. On top of the commercial rules we get for ModSecurity from a third-party security company, we also use our own rules since from time to time we detect specific attacks that aren't yet present inside the commercial group. This way, we can easily improve the security of your Virtual private server in a timely manner rather than waiting for a certified update.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to employ it because it is turned on by default every time you add a new domain or subdomain on your web server. In the event that it interferes with some of your applications, you will be able to stop it via the respective part of Hepsia, or you may leave it operating in passive mode, so it'll identify attacks and shall still maintain a log for them, but won't prevent them. You can look at the logs later to learn what you can do to boost the protection of your websites since you shall find details such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity responded, etc. The rules which we use are commercial, thus they are regularly updated by a security firm, but to be on the safe side, our administrators also add custom rules every now and then as to react to any new threats they have discovered.