ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its overall performance and when it detects an intrusion attempt, it prevents it. The firewall also maintains a more detailed log for the traffic than any server does, so you shall manage to monitor what is going on with your websites much better than if you rely simply on standard logs. ModSecurity uses security rules based on which it stops attacks. For instance, it detects if anyone is attempting to log in to the administration area of a certain script a number of times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the firewall software blocks the attempts instantly, and then records detailed info about them in its logs. ModSecurity is amongst the very best software firewalls on the market and it can protect your web applications against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Web Hosting

ModSecurity comes by default with all web hosting solutions which we provide and it shall be switched on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you can switch on and disable it with simply a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to stop them. The log for any of your Internet sites shall include detailed info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules we use are regularly updated and comprise of both commercial ones which we get from a third-party security business and custom ones which our system admins add in case that they detect a new kind of attacks. In this way, the Internet sites which you host here will be a lot more protected with no action needed on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting plans which we offer come with ModSecurity and given that the firewall is enabled by default, any website that you create under a domain or a subdomain shall be protected immediately. An independent section within the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll allow you to stop and start the firewall for any website or activate a detection mode. With the latter, ModSecurity won't take any action, but it will still detect possible attacks and will keep all information within a log as if it were completely active. The logs can be found within the exact same section of the Control Panel and they feature information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules which we use on our servers are a mix between commercial ones from a security firm and custom ones made by our system admins. As a result, we provide higher security for your web applications as we can defend them from attacks before security corporations release updates for brand new threats.

ModSecurity in VPS Web Hosting

Safety is extremely important to us, so we set up ModSecurity on all virtual private servers which are set up with the Hepsia Control Panel as a standard. The firewall could be managed via a dedicated section within Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you won't need to do anything manually. You shall also be able to deactivate it or turn on the so-called detection mode, so it shall keep a log of possible attacks that you can later study, but shall not block them. The logs in both passive and active modes offer info about the kind of the attack and how it was eliminated, what IP address it originated from and other useful data which could help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. In addition to the commercial rules that we get for ModSecurity from a third-party security firm, we also use our own rules because occasionally we detect specific attacks that are not yet present in the commercial group. This way, we could enhance the security of your Virtual private server promptly rather than waiting for an official update.

ModSecurity in Dedicated Servers Hosting

When you opt to host your sites on a dedicated server with the Hepsia CP, your web apps will be protected right away since ModSecurity is available with all Hepsia-based packages. You'll be able to control the firewall with ease and if required, you will be able to turn it off or activate its passive mode when it'll only keep a log of what's taking place without taking any action to stop potential attacks. The logs that you'll find in the very same section of the CP are quite detailed and contain data about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so on. This data will allow you to take measures and increase the security of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our admins include when they recognize attacks which haven't yet been included inside the commercial pack.