ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and if it discovers an intrusion attempt, it prevents it. The firewall also keeps a more comprehensive log for the website visitors than any server does, so you'll manage to keep an eye on what is going on with your websites a lot better than if you rely simply on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it detects if someone is attempting to log in to the administration area of a certain script several times or if a request is sent to execute a file with a certain command. In such instances these attempts set off the corresponding rules and the firewall blocks the attempts instantly, and then records detailed info about them inside its logs. ModSecurity is among the best software firewalls out there and it can protect your web apps against many threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Website Hosting

ModSecurity is available on all website hosting web servers, so if you opt to host your Internet sites with our firm, they will be resistant to a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you will have to do on your end. You will be able to stop ModSecurity for any site if required, or to switch on a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You shall be able to view comprehensive logs through your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity dealt with the threat. Since we take the safety of our customers' websites very seriously, we employ a group of commercial rules which we take from one of the top companies that maintain this type of rules. Our admins also add custom rules to make sure that your Internet sites shall be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity by default in all semi-dedicated server packages, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts shall allow you to switch on or turn off the firewall for any Internet site with a click. You shall also be able to activate a passive detection mode with which ModSecurity shall keep a log of potential attacks without actually preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack caused, where it originated from, etcetera. The list of rules which we employ is regularly updated in order to match any new risks which could appear on the Internet and it includes both commercial rules that we get from a security corporation and custom-written ones which our admins add in the event that they discover a threat which is not present inside the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers that we offer and it shall be turned on automatically for any new domain or subdomain you add on the machine. That way, any web application that you install shall be protected immediately without doing anything by hand on your end. The firewall could be handled through the section of the CP which has the same name. This is the location in whichyou'll be able to disable ModSecurity or activate its passive mode, so it won't take any action towards threats, but will still keep a thorough log. The recorded information is available inside the same area as well and you shall be able to see what IPs any attacks originated from to enable you to stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules we employ on our servers are a blend between commercial ones that we get from a security organization and custom ones which are added by our staff to enhance the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain you create on the web server. Just in case that a web application does not function properly, you can either turn off the firewall or set it to function in passive mode. The second means that ModSecurity shall maintain a log of any potential attack which might occur, but shall not take any action to stop it. The logs generated in passive or active mode shall give you more details about the exact file which was attacked, the form of the attack and the IP it came from, etcetera. This data shall allow you to decide what steps you can take to boost the safety of your Internet sites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules which we employ are updated constantly with a commercial package from a third-party security firm we work with, but occasionally our admins add their own rules also in case they identify a new potential threat.