ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and if it identifies an intrusion attempt, it blocks it. The firewall additionally maintains a more detailed log for the traffic than any server does, so you shall be able to keep an eye on what's happening with your sites better than if you rely only on conventional logs. ModSecurity works with security rules based on which it prevents attacks. For example, it detects whether someone is attempting to log in to the admin area of a particular script several times or if a request is sent to execute a file with a certain command. In such circumstances these attempts set off the corresponding rules and the firewall software hinders the attempts right away, and then records detailed information about them inside its logs. ModSecurity is among the most effective software firewalls available and it can protect your web apps against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Shared Website Hosting

ModSecurity can be found with each and every shared website hosting solution that we provide and it's switched on by default for any domain or subdomain which you add via your Hepsia CP. In the event that it interferes with any of your apps or you'd like to disable it for any reason, you'll be able to accomplish that through the ModSecurity area of Hepsia with simply a mouse click. You may also enable a passive mode, so the firewall will detect potential attacks and keep a log, but won't take any action. You could see comprehensive logs in the same section, including the IP where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, and so on. For maximum protection of our clients we use a collection of commercial firewall rules blended with custom ones that are provided by our system admins.

ModSecurity in Semi-dedicated Servers

Any web app which you install in your new semi-dedicated server account will be protected by ModSecurity as the firewall is provided with all our hosting solutions and is switched on by default for any domain and subdomain you add or create using your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated area within Hepsia where not only could you activate or deactivate it fully, but you can also switch on a passive mode, so the firewall won't stop anything, but it shall still keep an archive of possible attacks. This takes simply a mouse click and you'll be able to look at the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, and so forth. The firewall employs 2 sets of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one which our administrators update manually in order to respond to newly discovered risks as fast as possible.

ModSecurity in VPS Servers

All VPS servers which are offered with the Hepsia Control Panel come with ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the machine, so there will not be anything special which you shall have to do to protect your sites. It shall take you a click to stop ModSecurity if needed or to switch on its passive mode so that it records what goes on without taking any measures to stop intrusions. You'll be able to see the logs generated in active or passive mode through the corresponding section of Hepsia and learn more about the type of the attack, where it came from, what rule the firewall employed to tackle it, and so forth. We employ a mix of commercial and custom rules so as to ensure that ModSecurity shall block out as many risks as possible, consequently boosting the protection of your web programs as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers which are integrated with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it as it's enabled by default every time you add a new domain or subdomain on your server. In the event that it interferes with any of your apps, you shall be able to stop it through the respective area of Hepsia, or you can leave it working in passive mode, so it shall identify attacks and shall still keep a log for them, but shall not block them. You can analyze the logs later to find out what you can do to boost the security of your sites as you shall find details such as where an intrusion attempt came from, what site was attacked and based on what rule ModSecurity reacted, etc. The rules we employ are commercial, thus they're regularly updated by a security firm, but to be on the safe side, our staff also add custom rules every now and then as to deal with any new threats they have discovered.