ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and if it identifies an intrusion attempt, it blocks it. The firewall also keeps a more comprehensive log for the traffic than any server does, so you shall manage to keep an eye on what is happening with your sites much better than if you rely only on conventional logs. ModSecurity uses security rules based on which it prevents attacks. For instance, it identifies whether anyone is trying to log in to the administrator area of a certain script a number of times or if a request is sent to execute a file with a specific command. In these instances these attempts trigger the corresponding rules and the software blocks the attempts right away, then records in-depth info about them in its logs. ModSecurity is amongst the very best software firewalls available and it could easily protect your web apps against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Hosting

ModSecurity is available with each and every shared hosting package that we offer and it's activated by default for any domain or subdomain that you include via your Hepsia CP. In case it interferes with any of your programs or you'd like to disable it for some reason, you'll be able to do that through the ModSecurity section of Hepsia with merely a mouse click. You may also activate a passive mode, so the firewall will discover potential attacks and keep a log, but shall not take any action. You'll be able to see extensive logs in the same section, including the IP where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, and so forth. For max safety of our clients we use a collection of commercial firewall rules combined with custom ones that are added by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web application which you set up within your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall comes with all our hosting plans and is activated by default for any domain and subdomain you include or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated area in Hepsia where not simply can you activate or deactivate it fully, but you could also activate a passive mode, so the firewall shall not block anything, but it'll still keep an archive of possible attacks. This takes just a mouse click and you will be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, and so on. The firewall employs two sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our administrators update manually as to respond to newly discovered threats at the earliest opportunity.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting CP, so your web applications will be secured from the moment your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if needed, you'll be able to deactivate it with a mouse click through the corresponding section of Hepsia. You may also set it to operate in detection mode, so it will keep a comprehensive log of any possible attacks without taking any action to prevent them. The logs can be found in the same section and provide information about the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For optimum security, we employ not only commercial rules from a company operating in the field of web security, but also custom ones that our administrators include personally in order to respond to new risks that are still not dealt with in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain you create on the server. Just in case that a web app doesn't work adequately, you may either turn off the firewall or set it to operate in passive mode. The second means that ModSecurity shall keep a log of any possible attack which may happen, but won't take any action to prevent it. The logs created in passive or active mode will give you additional details about the exact file that was attacked, the nature of the attack and the IP address it came from, and so forth. This info shall enable you to decide what steps you can take to improve the security of your sites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules we employ are updated constantly with a commercial bundle from a third-party security company we work with, but sometimes our admins add their own rules also in the event that they discover a new potential threat.