ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its functionality and if it identifies an intrusion attempt, it blocks it. The firewall additionally maintains a more detailed log for the traffic than any server does, so you shall manage to keep track of what is going on with your websites a lot better than if you rely only on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it identifies whether someone is trying to log in to the admin area of a certain script multiple times or if a request is sent to execute a file with a particular command. In such instances these attempts trigger the corresponding rules and the firewall software blocks the attempts right away, then records detailed information about them inside its logs. ModSecurity is one of the most effective software firewalls on the market and it can protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Website Hosting

ModSecurity comes by default with all shared website hosting plans which we supply and it will be activated automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and disable it with just a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to stop them. The log for each of your Internet sites shall contain comprehensive information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and comprise of both commercial ones which we get from a third-party security business and custom ones which our system administrators add in the event that they detect a new kind of attacks. That way, the sites that you host here shall be way more secure without any action required on your end.

ModSecurity in Semi-dedicated Hosting

Any web program which you install inside your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain you add or create through your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section in Hepsia where not only can you activate or deactivate it entirely, but you can also enable a passive mode, so the firewall won't stop anything, but it shall still maintain an archive of potential attacks. This requires just a mouse click and you'll be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, and so on. The firewall uses 2 sets of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one which our administrators update personally in order to respond to recently discovered threats at the earliest opportunity.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting CP, so your web apps shall be secured from the instant your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if required, you could disable it with a mouse click through the corresponding section of Hepsia. You could also set it to work in detection mode, so it'll keep a detailed log of any potential attacks without taking any action to stop them. The logs are available within the very same section and offer information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For optimum security, we employ not simply commercial rules from a business working in the field of web security, but also custom ones our admins add personally in order to respond to new risks which are still not addressed in the commercial rules.

ModSecurity in Dedicated Hosting

All of our dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any program you upload or set up shall be secured from the very beginning and you'll not need to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you shall see in the logs can easily enable you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this data, you can see whether a site needs an update, whether you ought to block IPs from accessing your hosting server, etc. In addition to the third-party commercial security rules for ModSecurity which we use, our admins include custom ones too when they find a new threat which is not yet in the commercial bundle.