ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and if it discovers an intrusion attempt, it prevents it. The firewall also maintains a more thorough log for the traffic than any web server does, so you'll be able to keep track of what's happening with your websites a lot better than if you rely only on standard logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it identifies whether somebody is attempting to log in to the administration area of a certain script several times or if a request is sent to execute a file with a particular command. In these cases these attempts trigger the corresponding rules and the firewall software hinders the attempts right away, after that records in-depth information about them inside its logs. ModSecurity is one of the most effective software firewalls available and it can protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Cloud Hosting

ModSecurity is offered with each and every cloud hosting solution that we offer and it's turned on by default for any domain or subdomain which you add via your Hepsia CP. If it disrupts any of your programs or you'd like to disable it for any reason, you shall be able to do that through the ModSecurity area of Hepsia with merely a click. You may also enable a passive mode, so the firewall will discover potential attacks and maintain a log, but won't take any action. You'll be able to view detailed logs in the same section, including the IP address where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, etc. For optimum protection of our customers we use a group of commercial firewall rules mixed with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Servers

We've incorporated ModSecurity as a standard inside all semi-dedicated server packages, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will allow you to activate or disable the firewall for any website with a mouse click. You will also have the ability to activate a passive detection mode with which ModSecurity shall maintain a log of potential attacks without actually stopping them. The detailed logs include the nature of the attack and what ModSecurity response this attack triggered, where it came from, and so forth. The list of rules we employ is frequently updated in order to match any new threats which may appear on the Internet and it consists of both commercial rules that we get from a security company and custom-written ones that our admins add in case they discover a threat that is not present in the commercial list yet.

ModSecurity in VPS Servers

Safety is very important to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia CP as a standard. The firewall could be managed via a dedicated section inside Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you will not have to do anything personally. You shall also be able to disable it or activate the so-called detection mode, so it will keep a log of potential attacks that you can later examine, but won't prevent them. The logs in both passive and active modes contain details about the type of the attack and how it was stopped, what IP it originated from and other useful info which may help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. On top of the commercial rules we get for ModSecurity from a third-party security company, we also employ our own rules since every now and then we identify specific attacks which are not yet present within the commercial pack. That way, we can boost the protection of your Virtual private server right away as opposed to awaiting an official update.

ModSecurity in Dedicated Servers

All our dedicated servers that are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or install shall be protected from the very beginning and you'll not have to bother about common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you'll discover in the logs can easily allow you to to secure your sites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this data, you can see if a website needs an update, if you need to block IPs from accessing your server, etcetera. On top of the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too if they come across a new threat that's not yet in the commercial bundle.