ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and if it detects an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the site visitors than any server does, so you'll manage to keep track of what is happening with your sites much better than if you rely only on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it detects if someone is attempting to log in to the administrator area of a particular script several times or if a request is sent to execute a file with a specific command. In these instances these attempts trigger the corresponding rules and the firewall software blocks the attempts in real time, then records detailed details about them inside its logs. ModSecurity is among the most effective software firewalls out there and it can easily protect your web applications against many threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Cloud Web Hosting

ModSecurity comes by default with all cloud web hosting packages that we offer and it'll be turned on automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and disable it with just a click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to stop them. The log for any of your Internet sites will contain comprehensive information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are regularly updated and comprise of both commercial ones we get from a third-party security company and custom ones our system admins include in the event that they detect a new type of attacks. In this way, the Internet sites which you host here shall be way more protected without any action required on your end.

ModSecurity in Semi-dedicated Servers

We have incorporated ModSecurity as a standard within all semi-dedicated server plans, so your web apps will be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will allow you to enable or turn off the firewall for any site with a click. You shall also be able to switch on a passive detection mode through which ModSecurity will keep a log of potential attacks without actually stopping them. The comprehensive logs include the nature of the attack and what ModSecurity response this attack caused, where it came from, etc. The list of rules which we employ is frequently updated in order to match any new risks that might appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our admins include if they discover a threat that's not present inside the commercial list yet.

ModSecurity in VPS Servers

All VPS servers that are set up with the Hepsia Control Panel feature ModSecurity. The firewall is installed and switched on by default for all domains that are hosted on the server, so there won't be anything special which you'll need to do to protect your websites. It shall take you simply a click to stop ModSecurity if required or to activate its passive mode so that it records what occurs without taking any steps to stop intrusions. You will be able to look at the logs created in passive or active mode through the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall used to deal with it, and so forth. We employ a combination of commercial and custom rules so as to make certain that ModSecurity will prevent as many threats as possible, consequently enhancing the security of your web apps as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is provided as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain which you create on the server. Just in case that a web app doesn't function correctly, you may either turn off the firewall or set it to function in passive mode. The second means that ModSecurity will maintain a log of any possible attack which might take place, but won't take any action to stop it. The logs generated in passive or active mode will offer you more details about the exact file that was attacked, the form of the attack and the IP address it originated from, etcetera. This information shall permit you to choose what measures you can take to improve the safety of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules that we employ are updated frequently with a commercial pack from a third-party security company we work with, but oftentimes our administrators add their own rules as well in case they find a new potential threat.