ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its performance and in case it discovers an intrusion attempt, it prevents it. The firewall also keeps a more comprehensive log for the traffic than any web server does, so you'll be able to keep an eye on what is going on with your sites better than if you rely simply on conventional logs. ModSecurity works with security rules based on which it stops attacks. For instance, it recognizes if anyone is trying to log in to the administration area of a certain script multiple times or if a request is sent to execute a file with a particular command. In these circumstances these attempts set off the corresponding rules and the software blocks the attempts immediately, after that records in-depth info about them in its logs. ModSecurity is one of the very best software firewalls on the market and it can protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Web Hosting

ModSecurity comes by default with all web hosting plans that we provide and it will be switched on automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to switch on and disable it with just a click or set it to detection mode, so it'll maintain a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites will feature comprehensive info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are regularly updated and consist of both commercial ones that we get from a third-party security firm and custom ones which our system administrators add in the event that they detect a new sort of attacks. This way, the Internet sites you host here will be far more secure without any action required on your end.

ModSecurity in Semi-dedicated Servers

We've integrated ModSecurity as a standard in all semi-dedicated server plans, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will permit you to switch on or disable the firewall for any website with a click. You shall also have the ability to turn on a passive detection mode with which ModSecurity will maintain a log of potential attacks without really preventing them. The detailed logs include the nature of the attack and what ModSecurity response this attack caused, where it originated from, etcetera. The list of rules we use is constantly updated as to match any new risks which might appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones that our administrators add in the event that they find a threat that is not present in the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers which we offer and it will be turned on automatically for every new domain or subdomain which you include on the server. This way, any web app which you install shall be secured right away without doing anything manually on your end. The firewall may be managed via the section of the Control Panel which has the same name. This is the area whereyou'll be able to disable ModSecurity or activate its passive mode, so it will not take any action against threats, but shall still maintain a thorough log. The recorded information is available within the same area as well and you will be able to see what IPs any attacks came from so that you can block them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules we employ on our servers are a mixture between commercial ones that we obtain from a security organization and custom ones that are added by our admins to optimize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

All of our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program that you upload or install shall be protected from the very beginning and you will not need to worry about common attacks or vulnerabilities. A separate section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you'll see in the logs can help you to secure your Internet sites better - the IP address an attack came from, what site was attacked as well as how, what ModSecurity rule was triggered, etcetera. With this info, you can see if a site needs an update, whether you should block IPs from accessing your server, etc. Besides the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too every time they come across a new threat that's not yet in the commercial bundle.