ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and when it identifies an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the website visitors than any server does, so you will be able to keep an eye on what's happening with your sites much better than if you rely only on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it recognizes if somebody is trying to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a certain command. In these cases these attempts set off the corresponding rules and the firewall program hinders the attempts immediately, and then records detailed info about them in its logs. ModSecurity is amongst the best software firewalls out there and it could easily protect your web apps against many threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting packages that we offer and it shall be turned on automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and deactivate it with only a click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to prevent them. The log for any of your sites shall feature elaborate info such as the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are regularly updated and consist of both commercial ones we get from a third-party security business and custom ones which our system admins add in the event that they detect a new kind of attacks. In this way, the websites you host here shall be far more secure without any action expected on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you opt to host your websites with us, there shall not be anything special you will have to do as the firewall is switched on by default for all domains and subdomains which you include using your hosting CP. If needed, you'll be able to disable ModSecurity for a certain website or switch on the so-called detection mode in which case the firewall will still operate and record info, but shall not do anything to prevent possible attacks on your Internet sites. Detailed logs will be readily available in your Control Panel and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so forth. We use two sorts of rules on our servers - commercial ones from a company that operates in the field of web security, and custom ones which our admins occasionally include to respond to newly identified threats in a timely manner.

ModSecurity in VPS Servers

Security is of the utmost importance to us, so we set up ModSecurity on all VPS servers that are made available with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't have to do anything manually. You will also be able to disable it or turn on the so-called detection mode, so it'll maintain a log of possible attacks which you can later study, but won't stop them. The logs in both passive and active modes contain info about the type of the attack and how it was stopped, what IP it originated from and other valuable information that could help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. Besides the commercial rules which we get for ModSecurity from a third-party security firm, we also employ our own rules as occasionally we find specific attacks which aren't yet present within the commercial group. This way, we could boost the protection of your Virtual private server immediately rather than awaiting a certified update.

ModSecurity in Dedicated Servers

All our dedicated servers which are installed with the Hepsia hosting CP feature ModSecurity, so any program you upload or set up shall be protected from the very beginning and you won't need to worry about common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records information about intrusions, but does not take actions to prevent them. What you will see in the logs can help you to secure your sites better - the IP an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this info, you can see if an Internet site needs an update, whether you ought to block IPs from accessing your web server, and so forth. On top of the third-party commercial security rules for ModSecurity which we use, our admins add custom ones as well if they discover a new threat that is not yet in the commercial bundle.