ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and if it detects an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the traffic than any web server does, so you shall be able to keep track of what is going on with your websites a lot better than if you rely only on standard logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it detects whether someone is attempting to log in to the administrator area of a specific script multiple times or if a request is sent to execute a file with a specific command. In these cases these attempts set off the corresponding rules and the firewall program hinders the attempts instantly, and then records in-depth details about them inside its logs. ModSecurity is among the very best software firewalls available and it can easily protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Hosting

ModSecurity comes standard with all hosting solutions which we offer and it will be activated automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you could switch on and disable it with just a click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to stop them. The log for any of your Internet sites shall include detailed information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are regularly updated and comprise of both commercial ones which we get from a third-party security business and custom ones our system administrators add in the event that they detect a new type of attacks. This way, the Internet sites that you host here will be way more secure with no action required on your end.

ModSecurity in Semi-dedicated Servers

Any web program you install inside your new semi-dedicated server account will be protected by ModSecurity because the firewall comes with all our hosting plans and is activated by default for any domain and subdomain which you add or create via your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated section within Hepsia where not simply could you activate or deactivate it fully, but you can also enable a passive mode, so the firewall won't stop anything, but it'll still maintain an archive of possible attacks. This requires only a mouse click and you'll be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall uses two sets of rules on our machines - a commercial one that we get from a third-party web security provider and a custom one which our admins update manually as to respond to newly discovered risks immediately.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers we offer and it'll be turned on automatically for any new domain or subdomain you include on the machine. That way, any web application that you install shall be secured right away without doing anything personally on your end. The firewall can be managed through the section of the CP that has the same name. This is the place whereyou can switch off ModSecurity or enable its passive mode, so it shall not take any action toward threats, but will still maintain a comprehensive log. The recorded info is available inside the same section as well and you'll be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules which we use on our servers are a mixture between commercial ones we obtain from a security organization and custom ones which are included by our administrators to maximize the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers

All our dedicated servers which are installed with the Hepsia hosting CP include ModSecurity, so any app that you upload or set up will be properly secured from the very beginning and you won't have to worry about common attacks or vulnerabilities. An individual section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you will find in the logs can enable you to to secure your websites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, etcetera. With this data, you'll be able to see if a site needs an update, whether you should block IPs from accessing your server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well if they find a new threat which is not yet a part of the commercial bundle.