ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it detects an intrusion attempt, it blocks it. The firewall additionally keeps a more thorough log for the traffic than any web server does, so you will manage to keep track of what's going on with your websites much better than if you rely only on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes whether somebody is attempting to log in to the administrator area of a certain script a number of times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the firewall software blocks the attempts right away, and then records comprehensive info about them within its logs. ModSecurity is one of the very best software firewalls out there and it could easily protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Website Hosting

ModSecurity is provided with all website hosting machines, so when you opt to host your sites with our firm, they will be shielded from a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you will need to do on your end. You'll be able to stop ModSecurity for any site if required, or to enable a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You will be able to view specific logs through your Hepsia Control Panel including the IP where the attack originated from, what the attacker wished to do and how ModSecurity dealt with the threat. As we take the protection of our clients' websites very seriously, we use a collection of commercial rules that we take from one of the top firms that maintain such rules. Our administrators also include custom rules to ensure that your websites shall be protected against as many risks as possible.

ModSecurity in Semi-dedicated Servers

Any web program that you set up inside your new semi-dedicated server account shall be protected by ModSecurity because the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain you include or create via your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area in Hepsia where not only could you activate or deactivate it completely, but you could also activate a passive mode, so the firewall will not stop anything, but it shall still maintain a record of potential attacks. This normally requires just a mouse click and you will be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall employs 2 groups of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one that our admins update personally in order to respond to newly discovered threats as soon as possible.

ModSecurity in VPS Servers

Security is of the utmost importance to us, so we set up ModSecurity on all VPS servers which are provided with the Hepsia CP as a standard. The firewall can be managed through a dedicated section within Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you will not have to do anything by hand. You'll also be able to disable it or switch on the so-called detection mode, so it will maintain a log of possible attacks that you can later analyze, but shall not prevent them. The logs in both passive and active modes contain information about the type of the attack and how it was prevented, what IP it came from and other important information that might help you to tighten the security of your sites by updating them or blocking IPs, for instance. Beyond the commercial rules that we get for ModSecurity from a third-party security company, we also implement our own rules because occasionally we detect specific attacks which aren't yet present in the commercial group. That way, we could boost the protection of your Virtual private server right away as opposed to waiting for an official update.

ModSecurity in Dedicated Servers

If you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web apps will be protected straight away as ModSecurity is provided with all Hepsia-based solutions. You will be able to manage the firewall with ease and if needed, you'll be able to turn it off or enable its passive mode when it will only keep a log of what's going on without taking any action to stop possible attacks. The logs which you will find inside the very same section of the Control Panel are extremely detailed and include information about the attacker IP, what website and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etc. This data shall allow you to take measures and improve the protection of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our admins include when they detect attacks that haven't yet been included within the commercial pack.