ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and in case it discovers an intrusion attempt, it prevents it. The firewall also keeps a more comprehensive log for the site visitors than any web server does, so you shall manage to monitor what's happening with your Internet sites better than if you rely only on conventional logs. ModSecurity works with security rules based on which it prevents attacks. For example, it recognizes whether anyone is trying to log in to the admin area of a given script several times or if a request is sent to execute a file with a certain command. In these circumstances these attempts trigger the corresponding rules and the firewall hinders the attempts immediately, and then records comprehensive info about them in its logs. ModSecurity is amongst the very best software firewalls available and it can protect your web applications against many threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting solutions which we offer and it'll be turned on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and disable it with just a click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your Internet sites shall contain in-depth info including the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are frequently updated and include both commercial ones which we get from a third-party security firm and custom ones our system admins add in case that they detect a new kind of attacks. This way, the sites you host here shall be way more protected with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

Any web application which you install in your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain which you include or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated area inside Hepsia where not simply can you activate or deactivate it fully, but you may also enable a passive mode, so the firewall shall not block anything, but it'll still maintain a record of possible attacks. This takes just a click and you shall be able to view the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, and so forth. The firewall uses two sets of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one which our admins update personally as to respond to recently discovered threats at the earliest opportunity.

ModSecurity in VPS Hosting

All virtual private servers that are provided with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the web server, so there won't be anything special which you'll have to do to protect your websites. It'll take you just a mouse click to stop ModSecurity if needed or to activate its passive mode so that it records what happens without taking any actions to stop intrusions. You shall be able to see the logs produced in active or passive mode via the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall employed to take care of it, and so forth. We use a combination of commercial and custom rules in order to ensure that ModSecurity will block as many risks as possible, therefore boosting the protection of your web apps as much as possible.

ModSecurity in Dedicated Web Hosting

When you opt to host your websites on a dedicated server with the Hepsia CP, your web applications will be protected right away because ModSecurity is supplied with all Hepsia-based plans. You will be able to manage the firewall easily and if required, you will be able to turn it off or switch on its passive mode when it'll only keep a log of what's taking place without taking any action to stop possible attacks. The logs which you will find within the very same section of the Control Panel are quite detailed and feature information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This information will permit you to take measures and enhance the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our staff include when they identify attacks that haven't yet been included in the commercial pack.