ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and in case it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more thorough log for the traffic than any web server does, so you shall manage to monitor what's happening with your websites a lot better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it identifies if somebody is trying to log in to the admin area of a particular script multiple times or if a request is sent to execute a file with a particular command. In such cases these attempts set off the corresponding rules and the software hinders the attempts in real time, and then records in-depth information about them inside its logs. ModSecurity is amongst the very best software firewalls on the market and it can protect your web applications against many threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Hosting

ModSecurity is supplied with all shared hosting web servers, so if you decide to host your Internet sites with our firm, they shall be protected against an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you will need to do on your end. You will be able to stop ModSecurity for any website if needed, or to activate a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You will be able to view comprehensive logs via your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the safety of our clients' Internet sites seriously, we use a collection of commercial rules which we get from one of the leading companies that maintain this sort of rules. Our administrators also add custom rules to make certain that your Internet sites shall be protected against as many threats as possible.

ModSecurity in Semi-dedicated Servers

We've incorporated ModSecurity as a standard within all semi-dedicated server products, so your web applications will be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to enable or turn off the firewall for any website with a mouse click. You'll also have the ability to activate a passive detection mode with which ModSecurity will maintain a log of potential attacks without actually preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response this attack initiated, where it came from, and so forth. The list of rules we use is constantly updated in order to match any new risks that could appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones that our administrators add in case they find a threat that is not present within the commercial list yet.

ModSecurity in VPS Servers

Safety is very important to us, so we install ModSecurity on all VPS servers that are made available with the Hepsia CP by default. The firewall can be managed through a dedicated section within Hepsia and is turned on automatically when you include a new domain or generate a subdomain, so you won't need to do anything by hand. You shall also be able to disable it or activate the so-called detection mode, so it shall maintain a log of possible attacks that you can later analyze, but shall not stop them. The logs in both passive and active modes offer details about the kind of the attack and how it was eliminated, what IP address it originated from and other important information which might help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. On top of the commercial rules which we get for ModSecurity from a third-party security firm, we also employ our own rules because occasionally we discover specific attacks that aren't yet present within the commercial pack. This way, we can increase the protection of your VPS instantly instead of waiting for a certified update.

ModSecurity in Dedicated Servers

ModSecurity is offered by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain that you create on the hosting server. In case that a web application doesn't operate adequately, you could either switch off the firewall or set it to function in passive mode. The latter means that ModSecurity will keep a log of any possible attack that might take place, but shall not take any action to prevent it. The logs produced in active or passive mode shall present you with additional details about the exact file that was attacked, the type of the attack and the IP address it originated from, etcetera. This data shall allow you to choose what steps you can take to increase the security of your sites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules we employ are updated regularly with a commercial package from a third-party security firm we work with, but sometimes our staff include their own rules as well in case they discover a new potential threat.