ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and when it detects an intrusion attempt, it blocks it. The firewall also keeps a more detailed log for the website visitors than any web server does, so you shall manage to monitor what's happening with your websites better than if you rely only on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it detects whether somebody is attempting to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a specific command. In these situations these attempts set off the corresponding rules and the firewall blocks the attempts instantly, after that records detailed information about them inside its logs. ModSecurity is amongst the most effective software firewalls available and it could easily protect your web apps against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting plans, so your Internet apps shall be resistant to destructive attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you will be able to stop it via the respective part of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you will find inside Hepsia are quite detailed and offer data about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, etcetera. We employ a set of commercial rules that are constantly updated, but sometimes our admins add custom rules as well in order to efficiently protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server plans and if you choose to host your websites with us, there will not be anything special you will have to do given that the firewall is turned on by default for all domains and subdomains you add through your hosting CP. If necessary, you can disable ModSecurity for a certain website or activate the so-called detection mode in which case the firewall shall still operate and record data, but shall not do anything to stop potential attacks on your sites. Comprehensive logs shall be readily available inside your Control Panel and you shall be able to see what sort of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, and so on. We use two sorts of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones that our administrators often include to respond to newly found threats on time.

ModSecurity in VPS Servers

All VPS servers that are offered with the Hepsia CP feature ModSecurity. The firewall is installed and turned on by default for all domains that are hosted on the server, so there won't be anything special which you shall have to do to protect your sites. It will take you only a mouse click to stop ModSecurity if necessary or to switch on its passive mode so that it records what goes on without taking any measures to stop intrusions. You will be able to look at the logs generated in active or passive mode via the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall employed to deal with it, etcetera. We use a combination of commercial and custom rules so as to ensure that ModSecurity shall prevent as many threats as possible, therefore increasing the security of your web programs as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia Control Panel and you won't need to do anything specific on your end to employ it as it's activated by default every time you include a new domain or subdomain on your hosting server. In case it interferes with any of your programs, you'll be able to stop it through the respective part of Hepsia, or you can leave it in passive mode, so it will recognize attacks and will still maintain a log for them, but won't block them. You could look at the logs later to find out what you can do to improve the safety of your Internet sites since you'll find info such as where an intrusion attempt originated from, what website was attacked and in accordance with what rule ModSecurity reacted, etc. The rules which we employ are commercial, therefore they are regularly updated by a security provider, but to be on the safe side, our staff also add custom rules once in a while as to deal with any new threats they have discovered.