ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and when it discovers an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the traffic than any server does, so you'll be able to monitor what's going on with your sites much better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For example, it recognizes whether somebody is trying to log in to the administrator area of a particular script a number of times or if a request is sent to execute a file with a specific command. In such cases these attempts trigger the corresponding rules and the firewall program hinders the attempts in real time, then records in-depth details about them inside its logs. ModSecurity is amongst the most effective software firewalls available and it can easily protect your web applications against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Cloud Web Hosting

ModSecurity is offered with every cloud web hosting package that we provide and it's turned on by default for every domain or subdomain which you add via your Hepsia Control Panel. If it interferes with any of your apps or you'd like to disable it for some reason, you'll be able to achieve that through the ModSecurity area of Hepsia with simply a mouse click. You may also activate a passive mode, so the firewall will recognize potential attacks and maintain a log, but will not take any action. You could see comprehensive logs in the very same section, including the IP where the attack originated from, exactly what the attacker aimed to do and at what time, what ModSecurity did, etcetera. For optimum protection of our clients we use a set of commercial firewall rules combined with custom ones which are provided by our system admins.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server solutions and if you decide to host your websites with our company, there won't be anything special you'll need to do as the firewall is activated by default for all domains and subdomains that you add via your hosting CP. If required, you could disable ModSecurity for a particular site or switch on the so-called detection mode in which case the firewall shall still function and record data, but will not do anything to stop possible attacks on your Internet sites. Comprehensive logs shall be readily available within your CP and you shall be able to see what sort of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, etcetera. We employ two kinds of rules on our servers - commercial ones from a business which operates in the field of web security, and customized ones which our administrators sometimes include to respond to newly identified threats promptly.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting CP, so your web programs will be protected from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you could deactivate it with a mouse click via the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall maintain an extensive log of any possible attacks without taking any action to stop them. The logs can be found in the exact same section and offer information regarding the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For maximum security, we employ not just commercial rules from a business working in the field of web security, but also custom ones which our admins add manually so as to react to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers which are installed with the Hepsia hosting Control Panel feature ModSecurity, so any program you upload or install will be properly secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you'll find in the logs can easily enable you to to secure your Internet sites better - the IP address an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this info, you could see whether an Internet site needs an update, if you need to block IPs from accessing your server, etc. In addition to the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too when they find a new threat which is not yet included in the commercial bundle.