ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and in case it detects an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the site visitors than any web server does, so you'll be able to keep track of what is going on with your Internet sites a lot better than if you rely simply on standard logs. ModSecurity uses security rules based on which it stops attacks. For example, it identifies if anyone is attempting to log in to the admin area of a given script multiple times or if a request is sent to execute a file with a specific command. In these situations these attempts trigger the corresponding rules and the firewall software hinders the attempts in real time, and then records comprehensive details about them inside its logs. ModSecurity is one of the most effective software firewalls on the market and it can easily protect your web apps against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Hosting

ModSecurity can be found with every cloud hosting package that we offer and it's turned on by default for any domain or subdomain that you include through your Hepsia CP. If it disrupts any of your programs or you'd like to disable it for any reason, you shall be able to do that through the ModSecurity area of Hepsia with only a mouse click. You can also activate a passive mode, so the firewall will detect potential attacks and keep a log, but won't take any action. You could view extensive logs in the very same section, including the IP where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, etcetera. For maximum protection of our clients we use a collection of commercial firewall rules combined with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Servers

Any web app you set up in your new semi-dedicated server account shall be protected by ModSecurity as the firewall is provided with all our hosting solutions and is turned on by default for any domain and subdomain that you add or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated area inside Hepsia where not simply could you activate or deactivate it fully, but you could also enable a passive mode, so the firewall shall not stop anything, but it'll still maintain a record of possible attacks. This takes simply a click and you will be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall employs two groups of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one which our admins update manually as to respond to newly discovered risks as soon as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting CP, so your web applications will be protected from the instant your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you could disable it with a click of your mouse via the corresponding section of Hepsia. You can also set it to work in detection mode, so it'll maintain an extensive log of any possible attacks without taking any action to prevent them. The logs can be found within the very same section and provide details about the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For best security, we use not only commercial rules from a firm operating in the field of web security, but also custom ones our administrators add personally in order to react to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any application that you upload or set up shall be properly secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. An independent section in Hepsia will permit you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you will find in the logs shall help you to secure your websites better - the IP address an attack came from, what site was attacked and exactly how, what ModSecurity rule was triggered, etc. With this info, you'll be able to see if an Internet site needs an update, if you should block IPs from accessing your server, and so forth. Besides the third-party commercial security rules for ModSecurity we use, our admins add custom ones as well when they find a new threat that's not yet in the commercial bundle.