ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and when it identifies an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the website visitors than any web server does, so you will be able to keep an eye on what's going on with your Internet sites better than if you rely simply on standard logs. ModSecurity works with security rules based on which it stops attacks. For example, it identifies whether somebody is attempting to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a specific command. In such situations these attempts set off the corresponding rules and the firewall program blocks the attempts instantly, and then records detailed details about them inside its logs. ModSecurity is among the best software firewalls on the market and it can protect your web applications against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins often.

ModSecurity in Cloud Website Hosting

ModSecurity is available on all cloud website hosting machines, so if you decide to host your sites with our firm, they'll be protected against an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you shall have to do on your end. You will be able to stop ModSecurity for any site if necessary, or to activate a detection mode, so all activity will be recorded, but the firewall will not take any real action. You'll be able to view detailed logs via your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity handled the threat. Since we take the security of our clients' sites very seriously, we use a set of commercial rules that we get from one of the top companies that maintain this sort of rules. Our administrators also include custom rules to make sure that your websites will be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you opt to host your sites with us, there won't be anything special you'll have to do as the firewall is turned on by default for all domains and subdomains you include via your hosting CP. If needed, you'll be able to disable ModSecurity for a certain site or turn on the so-called detection mode in which case the firewall shall still work and record data, but will not do anything to stop potential attacks on your Internet sites. Detailed logs shall be accessible within your Control Panel and you shall be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, etc. We employ two kinds of rules on our servers - commercial ones from a company which operates in the field of web security, and customized ones that our admins often add to respond to newly discovered threats in a timely manner.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting CP, so your web applications will be secured from the moment your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if necessary, you could disable it with a click via the corresponding section of Hepsia. You may also set it to function in detection mode, so it'll maintain a detailed log of any possible attacks without taking any action to stop them. The logs can be found within the exact same section and offer information regarding the nature of the attack, what IP address it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we use not just commercial rules from a business working in the field of web security, but also custom ones that our administrators add manually in order to respond to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers Hosting

ModSecurity is available by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain that you create on the server. Just in case that a web application does not function adequately, you could either turn off the firewall or set it to work in passive mode. The second means that ModSecurity will maintain a log of any possible attack that could happen, but won't take any action to stop it. The logs produced in active or passive mode will provide you with additional details about the exact file that was attacked, the type of the attack and the IP address it originated from, etcetera. This data shall allow you to decide what actions you can take to enhance the safety of your websites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules we employ are updated regularly with a commercial pack from a third-party security enterprise we work with, but sometimes our staff include their own rules also when they find a new potential threat.