ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and in case it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the traffic than any web server does, so you will be able to monitor what is going on with your websites better than if you rely only on standard logs. ModSecurity works with security rules based on which it stops attacks. For example, it identifies if anyone is trying to log in to the administrator area of a given script several times or if a request is sent to execute a file with a specific command. In these circumstances these attempts set off the corresponding rules and the firewall software hinders the attempts instantly, after that records in-depth information about them within its logs. ModSecurity is one of the best software firewalls available and it can protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Website Hosting

ModSecurity can be found with every single cloud website hosting plan that we provide and it's turned on by default for any domain or subdomain that you add through your Hepsia Control Panel. In the event that it disrupts any of your programs or you'd like to disable it for some reason, you shall be able to achieve that through the ModSecurity area of Hepsia with only a mouse click. You could also enable a passive mode, so the firewall will recognize potential attacks and maintain a log, but shall not take any action. You could view extensive logs in the exact same section, including the IP where the attack came from, exactly what the attacker aimed to do and at what time, what ModSecurity did, and so on. For maximum security of our clients we use a set of commercial firewall rules blended with custom ones which are included by our system administrators.

ModSecurity in Semi-dedicated Servers

Any web app which you set up within your new semi-dedicated server account will be protected by ModSecurity because the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain which you add or create through your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated area inside Hepsia where not only could you activate or deactivate it completely, but you may also switch on a passive mode, so the firewall won't stop anything, but it'll still keep a record of potential attacks. This requires just a mouse click and you will be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, and so on. The firewall uses 2 groups of rules on our machines - a commercial one that we get from a third-party web security company and a custom one that our administrators update personally as to respond to newly discovered risks as fast as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting Control Panel, so your web programs will be protected from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you could disable it with a mouse click from the corresponding section of Hepsia. You can also set it to operate in detection mode, so it'll maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs can be found in the very same section and provide information about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For maximum security, we employ not only commercial rules from a business working in the field of web security, but also custom ones our admins include manually in order to react to new risks that are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers which are set up with our Hepsia Control Panel and you won't need to do anything specific on your end to use it since it is turned on by default whenever you include a new domain or subdomain on your web server. If it interferes with any of your apps, you will be able to stop it via the respective part of Hepsia, or you could leave it operating in passive mode, so it shall identify attacks and shall still maintain a log for them, but shall not prevent them. You could look at the logs later to determine what you can do to improve the security of your websites as you shall find details such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, and so forth. The rules which we employ are commercial, hence they are frequently updated by a security firm, but to be on the safe side, our administrators also include custom rules occasionally as to react to any new threats they have identified.