ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and when it identifies an intrusion attempt, it blocks it. The firewall additionally keeps a more detailed log for the traffic than any web server does, so you shall be able to keep track of what is going on with your sites a lot better than if you rely only on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it recognizes if anyone is attempting to log in to the administrator area of a particular script a number of times or if a request is sent to execute a file with a specific command. In these situations these attempts trigger the corresponding rules and the firewall software blocks the attempts immediately, then records comprehensive info about them within its logs. ModSecurity is one of the very best software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Hosting

ModSecurity is offered with every single hosting solution that we provide and it is switched on by default for every domain or subdomain which you add through your Hepsia CP. In the event that it disrupts any of your apps or you'd like to disable it for whatever reason, you shall be able to do this through the ModSecurity area of Hepsia with simply a click. You can also activate a passive mode, so the firewall will identify possible attacks and keep a log, but shall not take any action. You could see detailed logs in the very same section, including the IP where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, and so on. For maximum security of our clients we use a collection of commercial firewall rules combined with custom ones which are included by our system admins.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions which we offer come with ModSecurity and given that the firewall is switched on by default, any site which you create under a domain or a subdomain will be protected straight away. An independent section inside the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to start and stop the firewall for any site or enable a detection mode. With the last option, ModSecurity will not take any action, but it will still recognize possible attacks and shall keep all info within a log as if it were completely active. The logs can be found within the same section of the Control Panel and they feature information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules which we use on our machines are a mix of commercial ones from a security business and custom ones made by our system admins. As a result, we provide greater security for your web applications as we can shield them from attacks even before security corporations release updates for new threats.

ModSecurity in VPS Hosting

Safety is of the utmost importance to us, so we install ModSecurity on all virtual private servers that are provided with the Hepsia Control Panel as a standard. The firewall can be managed through a dedicated section inside Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you will not need to do anything by hand. You'll also be able to deactivate it or switch on the so-called detection mode, so it'll keep a log of possible attacks you can later analyze, but won't prevent them. The logs in both passive and active modes contain details about the type of the attack and how it was stopped, what IP address it originated from and other useful data that may help you to tighten the security of your websites by updating them or blocking IPs, for instance. Besides the commercial rules that we get for ModSecurity from a third-party security firm, we also employ our own rules because every now and then we identify specific attacks that aren't yet present inside the commercial package. This way, we could improve the security of your VPS immediately as opposed to awaiting an official update.

ModSecurity in Dedicated Web Hosting

All our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any app that you upload or set up will be protected from the very beginning and you won't have to stress about common attacks or vulnerabilities. An individual section within Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records info about intrusions, but does not take actions to stop them. What you'll discover in the logs can easily help you to secure your Internet sites better - the IP address an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this information, you could see whether a site needs an update, whether you should block IPs from accessing your hosting server, etcetera. Besides the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well if they discover a new threat that's not yet in the commercial bundle.