ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and when it detects an intrusion attempt, it blocks it. The firewall furthermore keeps a more thorough log for the traffic than any web server does, so you shall manage to monitor what's going on with your Internet sites a lot better than if you rely only on standard logs. ModSecurity uses security rules based on which it stops attacks. For example, it recognizes if anyone is trying to log in to the administration area of a particular script multiple times or if a request is sent to execute a file with a certain command. In these cases these attempts trigger the corresponding rules and the firewall program hinders the attempts immediately, then records comprehensive info about them within its logs. ModSecurity is among the best software firewalls out there and it could easily protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

ModSecurity can be found with each and every shared hosting solution that we offer and it's turned on by default for any domain or subdomain which you include via your Hepsia CP. If it disrupts any of your programs or you would like to disable it for some reason, you'll be able to achieve that through the ModSecurity area of Hepsia with just a click. You could also enable a passive mode, so the firewall will recognize potential attacks and keep a log, but will not take any action. You'll be able to view detailed logs in the same section, including the IP where the attack came from, exactly what the attacker aimed to do and at what time, what ModSecurity did, etc. For maximum safety of our customers we use a collection of commercial firewall rules mixed with custom ones which are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web program which you install inside your new semi-dedicated hosting account will be protected by ModSecurity since the firewall is included with all our hosting plans and is switched on by default for any domain and subdomain which you include or create through your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it entirely, but you could also enable a passive mode, so the firewall will not stop anything, but it shall still keep a record of potential attacks. This normally requires simply a click and you shall be able to see the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, etc. The firewall employs 2 sets of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one which our admins update manually in order to respond to recently discovered risks at the earliest opportunity.

ModSecurity in VPS Web Hosting

All virtual private servers that are offered with the Hepsia CP come with ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the machine, so there shall not be anything special that you'll have to do to protect your sites. It will take you a mouse click to stop ModSecurity if needed or to switch on its passive mode so that it records what happens without taking any measures to stop intrusions. You'll be able to see the logs generated in active or passive mode via the corresponding section of Hepsia and find out more about the type of the attack, where it originated from, what rule the firewall employed to deal with it, etcetera. We use a mix of commercial and custom rules so as to make sure that ModSecurity shall block out as many risks as possible, therefore increasing the protection of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

ModSecurity is included with all dedicated servers which are set up with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it as it is switched on by default each time you add a new domain or subdomain on your server. In the event that it interferes with any of your applications, you shall be able to stop it via the respective area of Hepsia, or you can leave it working in passive mode, so it'll identify attacks and shall still keep a log for them, but won't prevent them. You'll be able to look at the logs later to find out what you can do to enhance the safety of your sites since you will find information such as where an intrusion attempt came from, what website was attacked and based on what rule ModSecurity reacted, and so on. The rules which we employ are commercial, hence they are constantly updated by a security provider, but to be on the safe side, our administrators also add custom rules occasionally in order to deal with any new threats they have discovered.