ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its overall performance and if it detects an intrusion attempt, it blocks it. The firewall additionally maintains a more thorough log for the traffic than any server does, so you'll manage to keep track of what is happening with your websites a lot better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it identifies whether someone is attempting to log in to the administration area of a specific script a number of times or if a request is sent to execute a file with a particular command. In these situations these attempts trigger the corresponding rules and the software blocks the attempts instantly, then records detailed details about them inside its logs. ModSecurity is among the very best software firewalls available and it could easily protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Hosting

ModSecurity is offered with each hosting solution which we provide and it's turned on by default for every domain or subdomain that you include via your Hepsia Control Panel. If it interferes with any of your applications or you'd like to disable it for any reason, you'll be able to accomplish that through the ModSecurity section of Hepsia with simply a mouse click. You can also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but shall not take any action. You can view detailed logs in the exact same section, including the IP where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, etcetera. For max security of our clients we use a collection of commercial firewall rules combined with custom ones which are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting solutions and if you choose to host your sites with our company, there shall not be anything special you'll have to do since the firewall is turned on by default for all domains and subdomains that you add via your hosting Control Panel. If required, you can disable ModSecurity for a given site or enable the so-called detection mode in which case the firewall will still work and record data, but won't do anything to stop potential attacks against your websites. Comprehensive logs shall be readily available within your CP and you'll be able to see what type of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etcetera. We use 2 sorts of rules on our servers - commercial ones from a business which operates in the field of web security, and customized ones that our admins sometimes include to respond to newly discovered risks on time.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting CP, so your web apps will be protected from the moment your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you'll be able to disable it with a click through the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs are available in the very same section and offer details about the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For maximum security, we use not only commercial rules from a business operating in the field of web security, but also custom ones our administrators add personally so as to react to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers Hosting

ModSecurity is included with all dedicated servers which are set up with our Hepsia Control Panel and you will not have to do anything specific on your end to employ it as it is activated by default each time you add a new domain or subdomain on your server. In case it disrupts some of your programs, you will be able to stop it through the respective part of Hepsia, or you can leave it working in passive mode, so it'll identify attacks and will still maintain a log for them, but shall not prevent them. You'll be able to examine the logs later to determine what you can do to increase the security of your Internet sites since you shall find info such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity responded, and so forth. The rules which we use are commercial, hence they're constantly updated by a security company, but to be on the safe side, our staff also add custom rules once in a while as to respond to any new threats they have found.