ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its operation and if it identifies an intrusion attempt, it blocks it. The firewall also maintains a more thorough log for the website visitors than any server does, so you will be able to keep an eye on what is happening with your Internet sites a lot better than if you rely only on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it detects if anyone is trying to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a specific command. In these cases these attempts trigger the corresponding rules and the firewall hinders the attempts immediately, after that records detailed information about them inside its logs. ModSecurity is among the very best software firewalls available and it can easily protect your web applications against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Website Hosting

We provide ModSecurity with all website hosting plans, so your web apps shall be resistant to harmful attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you will be able to stop it through the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you'll find inside Hepsia are extremely detailed and include data about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, etcetera. We employ a range of commercial rules which are frequently updated, but sometimes our administrators add custom rules as well so as to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server solutions that we offer feature ModSecurity and since the firewall is switched on by default, any Internet site you create under a domain or a subdomain will be secured right away. A separate section inside the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll enable you to start and stop the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity shall not take any action, but it will still detect possible attacks and will keep all data in a log as if it were 100% active. The logs could be found within the same section of the CP and they include specifics about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules which we employ on our machines are a mix of commercial ones from a security firm and custom ones created by our system administrators. As a result, we provide increased security for your web applications as we can shield them from attacks even before security businesses release updates for completely new threats.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers we offer and it will be activated automatically for any new domain or subdomain which you add on the server. In this way, any web application which you install shall be secured from the very beginning without doing anything by hand on your end. The firewall could be handled through the section of the Control Panel that bears the same name. This is the location whereyou could turn off ModSecurity or let its passive mode, so it shall not take any action toward threats, but shall still maintain a detailed log. The recorded info is available in the same section as well and you'll be able to see what IPs any attacks originated from so that you block them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules that we employ on our servers are a mixture between commercial ones we obtain from a security company and custom ones which are added by our staff to optimize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is offered as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain you create on the server. In the event that a web application does not function correctly, you could either switch off the firewall or set it to work in passive mode. The second means that ModSecurity shall keep a log of any potential attack that might take place, but won't take any action to stop it. The logs generated in active or passive mode will offer you additional details about the exact file which was attacked, the form of the attack and the IP it came from, and so forth. This information will allow you to decide what measures you can take to improve the protection of your websites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we employ are updated regularly with a commercial package from a third-party security firm we work with, but from time to time our admins add their own rules also if they come across a new potential threat.