ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its overall performance and if it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more thorough log for the traffic than any server does, so you'll be able to keep track of what's happening with your sites a lot better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it detects whether someone is attempting to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the firewall program blocks the attempts right away, then records in-depth info about them in its logs. ModSecurity is among the most effective software firewalls available and it can protect your web applications against many threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting plans, so your Internet apps shall be shielded from malicious attacks. The firewall is turned on as standard for all domains and subdomains, but in case you'd like, you'll be able to stop it through the respective section of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you shall find inside Hepsia are extremely detailed and feature info about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so on. We use a range of commercial rules which are frequently updated, but sometimes our administrators include custom rules as well in order to efficiently protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting plans and if you opt to host your websites with us, there will not be anything special you'll need to do as the firewall is activated by default for all domains and subdomains you add through your hosting Control Panel. If needed, you can disable ModSecurity for a given website or activate the so-called detection mode in which case the firewall will still operate and record info, but will not do anything to stop possible attacks on your Internet sites. Thorough logs will be available within your Control Panel and you shall be able to see what type of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, etc. We employ 2 sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and custom made ones which our admins occasionally include to respond to newly discovered threats in a timely manner.

ModSecurity in VPS

All virtual private servers that are provided with the Hepsia CP include ModSecurity. The firewall is installed and switched on by default for all domains which are hosted on the web server, so there will not be anything special that you shall have to do to protect your websites. It shall take you just a mouse click to stop ModSecurity if required or to switch on its passive mode so that it records what happens without taking any steps to stop intrusions. You shall be able to see the logs generated in passive or active mode through the corresponding section of Hepsia and discover more about the form of the attack, where it came from, what rule the firewall used to handle it, etc. We employ a combination of commercial and custom rules so as to make certain that ModSecurity shall stop as many threats as possible, therefore enhancing the security of your web apps as much as possible.

ModSecurity in Dedicated Hosting

When you choose to host your websites on a dedicated server with the Hepsia CP, your web apps will be secured right away since ModSecurity is provided with all Hepsia-based packages. You'll be able to regulate the firewall without difficulty and if required, you will be able to turn it off or enable its passive mode when it'll only maintain a log of what's happening without taking any action to prevent possible attacks. The logs which you'll find in the same section of the CP are incredibly detailed and contain info about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, etcetera. This information will allow you to take measures and increase the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our administrators include every time they detect attacks that haven't yet been included in the commercial pack.