ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and when it detects an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the website visitors than any web server does, so you will be able to keep track of what's happening with your sites a lot better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it identifies whether anyone is trying to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a certain command. In these circumstances these attempts set off the corresponding rules and the firewall blocks the attempts right away, after that records detailed information about them within its logs. ModSecurity is one of the very best software firewalls out there and it could easily protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Website Hosting

We provide ModSecurity with all cloud website hosting solutions, so your Internet applications will be shielded from malicious attacks. The firewall is turned on by default for all domains and subdomains, but if you would like, you'll be able to stop it through the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you'll discover in Hepsia are incredibly detailed and include info about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, etc. We use a set of commercial rules that are regularly updated, but sometimes our admins add custom rules as well in order to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity as a standard in all semi-dedicated hosting packages, so your web apps shall be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts shall allow you to activate or turn off the firewall for any Internet site with a mouse click. You shall also be able to activate a passive detection mode with which ModSecurity shall keep a log of potential attacks without actually stopping them. The thorough logs contain the nature of the attack and what ModSecurity response that attack activated, where it came from, etcetera. The list of rules which we use is constantly updated as to match any new risks which may appear on the Internet and it consists of both commercial rules that we get from a security company and custom-written ones that our admins add if they find a threat that is not present in the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are provided with the Hepsia hosting Control Panel, so your web apps shall be secured from the instant your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you could deactivate it with a click of your mouse via the corresponding section of Hepsia. You may also set it to work in detection mode, so it will keep a detailed log of any potential attacks without taking any action to prevent them. The logs are available within the very same section and offer info about the nature of the attack, what IP address it originated from and what ModSecurity rule was initiated to stop it. For best security, we use not only commercial rules from a company operating in the field of web security, but also custom ones which our admins add personally so as to respond to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers which are installed with the Hepsia hosting CP include ModSecurity, so any app you upload or set up will be properly secured from the very beginning and you will not need to stress about common attacks or vulnerabilities. An independent section within Hepsia will enable you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you'll find in the logs shall enable you to to secure your websites better - the IP address an attack originated from, what site was attacked as well as how, what ModSecurity rule was triggered, and so forth. With this info, you'll be able to see whether a website needs an update, whether you should block IPs from accessing your hosting server, etcetera. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too if they come across a new threat that is not yet in the commercial bundle.