ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its overall performance and when it identifies an intrusion attempt, it blocks it. The firewall also keeps a more detailed log for the website visitors than any server does, so you shall manage to monitor what is going on with your Internet sites a lot better than if you rely only on standard logs. ModSecurity works with security rules based on which it stops attacks. For instance, it recognizes whether somebody is attempting to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a specific command. In such circumstances these attempts set off the corresponding rules and the firewall software blocks the attempts immediately, after that records comprehensive info about them inside its logs. ModSecurity is amongst the best software firewalls on the market and it can easily protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Shared Web Hosting

We offer ModSecurity with all shared web hosting plans, so your Internet applications will be protected against destructive attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you shall be able to stop it through the respective section of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you will discover inside Hepsia are quite detailed and include information about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, and so forth. We employ a range of commercial rules that are often updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you choose to host your websites with us, there won't be anything special you'll have to do since the firewall is activated by default for all domains and subdomains that you include using your hosting Control Panel. If required, you could disable ModSecurity for a certain site or turn on the so-called detection mode in which case the firewall will still function and record information, but won't do anything to stop possible attacks against your Internet sites. Comprehensive logs shall be readily available in your Control Panel and you will be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so on. We use 2 types of rules on our servers - commercial ones from an organization which operates in the field of web security, and custom ones which our administrators occasionally add to respond to newly discovered risks promptly.

ModSecurity in VPS Servers

All VPS servers that are offered with the Hepsia CP come with ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the web server, so there shall not be anything special which you'll need to do to protect your Internet sites. It will take you only a mouse click to stop ModSecurity if needed or to switch on its passive mode so that it records what happens without taking any steps to stop intrusions. You'll be able to view the logs generated in passive or active mode from the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to deal with it, etcetera. We employ a mixture of commercial and custom rules in order to ensure that ModSecurity shall prevent as many risks as possible, therefore enhancing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is offered by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain that you create on the web server. In case that a web application doesn't function adequately, you may either turn off the firewall or set it to work in passive mode. The latter means that ModSecurity will maintain a log of any possible attack which might occur, but shall not take any action to stop it. The logs generated in active or passive mode shall give you more details about the exact file which was attacked, the nature of the attack and the IP it originated from, etc. This data shall permit you to choose what measures you can take to enhance the safety of your websites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules we employ are updated often with a commercial pack from a third-party security firm we work with, but oftentimes our admins include their own rules also in the event that they discover a new potential threat.