ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and in case it discovers an intrusion attempt, it blocks it. The firewall additionally keeps a more detailed log for the traffic than any server does, so you will manage to keep an eye on what's happening with your Internet sites much better than if you rely only on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes if somebody is trying to log in to the administration area of a particular script a number of times or if a request is sent to execute a file with a certain command. In these cases these attempts set off the corresponding rules and the firewall program hinders the attempts right away, and then records comprehensive information about them inside its logs. ModSecurity is one of the best software firewalls on the market and it can easily protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

ModSecurity can be found with each shared hosting package that we offer and it's activated by default for any domain or subdomain that you include via your Hepsia CP. If it disrupts any of your programs or you'd like to disable it for whatever reason, you'll be able to achieve that through the ModSecurity section of Hepsia with just a mouse click. You could also activate a passive mode, so the firewall will identify potential attacks and keep a log, but shall not take any action. You can view comprehensive logs in the very same section, including the IP address where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, and so forth. For optimum safety of our clients we use a set of commercial firewall rules blended with custom ones which are included by our system admins.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions that we offer feature ModSecurity and because the firewall is switched on by default, any Internet site that you set up under a domain or a subdomain will be secured right away. An independent section in the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to start and stop the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity won't take any action, but it shall still identify possible attacks and will keep all data inside a log as if it were 100% active. The logs can be found within the very same section of the Control Panel and they offer details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules that we use on our servers are a mix of commercial ones from a security business and custom ones created by our system admins. Consequently, we provide increased security for your web apps as we can defend them from attacks even before security businesses release updates for brand new threats.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are provided with the Hepsia hosting CP, so your web applications shall be secured from the instant your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you could deactivate it with a click from the corresponding section of Hepsia. You can also set it to operate in detection mode, so it'll keep a detailed log of any possible attacks without taking any action to prevent them. The logs are available inside the exact same section and provide information regarding the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For optimum security, we use not just commercial rules from a business operating in the field of web security, but also custom ones that our administrators include personally so as to respond to new threats which are still not addressed in the commercial rules.

ModSecurity in Dedicated Hosting

ModSecurity comes with all dedicated servers that are integrated with our Hepsia CP and you won't need to do anything specific on your end to employ it because it's activated by default whenever you include a new domain or subdomain on your hosting server. In the event that it disrupts any of your programs, you shall be able to stop it through the respective part of Hepsia, or you may leave it working in passive mode, so it shall identify attacks and shall still maintain a log for them, but will not prevent them. You can look at the logs later to determine what you can do to increase the safety of your sites since you shall find information such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity responded, etcetera. The rules we use are commercial, therefore they are regularly updated by a security company, but to be on the safe side, our admins also include custom rules from time to time in order to deal with any new threats they have discovered.