ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and if it discovers an intrusion attempt, it blocks it. The firewall also keeps a more detailed log for the site visitors than any server does, so you shall be able to monitor what is going on with your Internet sites a lot better than if you rely merely on standard logs. ModSecurity employs security rules based on which it stops attacks. For instance, it detects if somebody is attempting to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a particular command. In such circumstances these attempts set off the corresponding rules and the firewall blocks the attempts immediately, after that records detailed information about them within its logs. ModSecurity is amongst the very best software firewalls available and it can protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Hosting

ModSecurity comes standard with all hosting plans which we provide and it will be switched on automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to activate and disable it with just a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to prevent them. The log for each of your sites shall contain comprehensive info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are regularly updated and include both commercial ones which we get from a third-party security company and custom ones our system administrators add in case that they detect a new type of attacks. That way, the Internet sites that you host here will be way more secure without any action needed on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server plans and if you opt to host your Internet sites with our company, there shall not be anything special you will have to do as the firewall is switched on by default for all domains and subdomains you add via your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a certain site or activate the so-called detection mode in which case the firewall will still work and record data, but will not do anything to stop possible attacks against your sites. In depth logs shall be readily available within your Control Panel and you'll be able to see what type of attacks happened, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, etcetera. We employ two types of rules on our servers - commercial ones from a company that operates in the field of web security, and customized ones that our administrators occasionally include to respond to newly discovered risks in a timely manner.

ModSecurity in VPS Servers

All VPS servers which are offered with the Hepsia Control Panel feature ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the server, so there won't be anything special which you shall have to do to protect your websites. It'll take you simply a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what happens without taking any actions to stop intrusions. You shall be able to see the logs generated in passive or active mode via the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall used to handle it, etcetera. We use a combination of commercial and custom rules in order to make certain that ModSecurity shall stop as many threats as possible, hence increasing the security of your web applications as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia Control Panel and you won't need to do anything specific on your end to use it as it's enabled by default each time you include a new domain or subdomain on your web server. If it interferes with any of your apps, you will be able to stop it via the respective area of Hepsia, or you could leave it operating in passive mode, so it will identify attacks and will still keep a log for them, but won't block them. You'll be able to look at the logs later to find out what you can do to increase the safety of your websites since you will find details such as where an intrusion attempt originated from, what website was attacked and based upon what rule ModSecurity responded, and so forth. The rules which we use are commercial, thus they are regularly updated by a security company, but to be on the safe side, our admins also add custom rules from time to time as to deal with any new threats they have found.