ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and if it identifies an intrusion attempt, it blocks it. The firewall also maintains a more detailed log for the traffic than any server does, so you'll be able to monitor what's happening with your Internet sites better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it recognizes whether someone is trying to log in to the admin area of a particular script several times or if a request is sent to execute a file with a certain command. In such instances these attempts set off the corresponding rules and the software blocks the attempts in real time, after that records in-depth information about them within its logs. ModSecurity is one of the most effective software firewalls available and it can protect your web applications against many threats and vulnerabilities, particularly if you don’t update them or their plugins often.

ModSecurity in Shared Hosting

ModSecurity comes standard with all shared hosting plans that we supply and it'll be switched on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to activate and deactivate it with a click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites shall include elaborate info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are constantly updated and incorporate both commercial ones that we get from a third-party security firm and custom ones our system administrators include in case that they detect a new type of attacks. This way, the sites you host here shall be way more protected without any action required on your end.

ModSecurity in Semi-dedicated Hosting

We have integrated ModSecurity by default in all semi-dedicated hosting packages, so your web applications shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will allow you to activate or turn off the firewall for any website with a click. You shall also be able to activate a passive detection mode through which ModSecurity shall maintain a log of possible attacks without actually preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack triggered, where it came from, etcetera. The list of rules that we employ is constantly updated in order to match any new threats that may appear on the Internet and it includes both commercial rules that we get from a security business and custom-written ones that our administrators include if they find a threat that's not present inside the commercial list yet.

ModSecurity in VPS

Safety is essential to us, so we install ModSecurity on all virtual private servers which are provided with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section within Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you'll not have to do anything manually. You will also be able to disable it or switch on the so-called detection mode, so it shall keep a log of potential attacks you can later analyze, but shall not block them. The logs in both passive and active modes offer details regarding the form of the attack and how it was prevented, what IP address it originated from and other valuable data that could help you to tighten the security of your websites by updating them or blocking IPs, as an example. On top of the commercial rules that we get for ModSecurity from a third-party security company, we also employ our own rules since once in a while we discover specific attacks that aren't yet present within the commercial pack. This way, we could increase the security of your VPS instantly instead of awaiting an official update.

ModSecurity in Dedicated Hosting

All our dedicated servers which are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program which you upload or install will be protected from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An individual section within Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you will find in the logs can easily allow you to to secure your sites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this data, you'll be able to see if an Internet site needs an update, whether you ought to block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity we use, our admins include custom ones too when they discover a new threat that is not yet a part of the commercial bundle.