ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its operation and if it identifies an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the traffic than any web server does, so you'll be able to keep track of what is going on with your Internet sites much better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it stops attacks. For instance, it identifies whether somebody is attempting to log in to the admin area of a certain script a number of times or if a request is sent to execute a file with a specific command. In these situations these attempts trigger the corresponding rules and the firewall hinders the attempts immediately, then records detailed details about them within its logs. ModSecurity is among the most effective software firewalls available and it can protect your web applications against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Hosting

ModSecurity is available with each and every cloud hosting plan that we provide and it's switched on by default for every domain or subdomain which you add via your Hepsia Control Panel. In case it disrupts any of your apps or you would like to disable it for whatever reason, you will be able to achieve that through the ModSecurity section of Hepsia with only a click. You can also use a passive mode, so the firewall will identify potential attacks and keep a log, but shall not take any action. You can view extensive logs in the same section, including the IP where the attack came from, exactly what the attacker tried to do and at what time, what ModSecurity did, etcetera. For maximum security of our clients we use a set of commercial firewall rules mixed with custom ones which are included by our system administrators.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server solutions that we offer come with ModSecurity and because the firewall is enabled by default, any Internet site that you create under a domain or a subdomain shall be protected right from the start. An individual section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it will allow you to start and stop the firewall for any Internet site or activate a detection mode. With the last option, ModSecurity shall not take any action, but it shall still detect possible attacks and shall keep all information inside a log as if it were completely active. The logs could be found within the exact same section of the CP and they include information regarding the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules we employ on our web servers are a mix between commercial ones from a security company and custom ones created by our system administrators. For that reason, we provide greater security for your web apps as we can protect them from attacks before security corporations release updates for completely new threats.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting CP, so your web applications shall be protected from the moment your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if necessary, you'll be able to disable it with a click of your mouse via the corresponding section of Hepsia. You can also set it to function in detection mode, so it'll maintain a detailed log of any possible attacks without taking any action to prevent them. The logs are available in the exact same section and include information about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not just commercial rules from a company working in the field of web security, but also custom ones that our administrators include manually in order to react to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to use it as it is switched on by default every time you add a new domain or subdomain on your web server. If it interferes with any of your applications, you will be able to stop it through the respective area of Hepsia, or you may leave it operating in passive mode, so it will detect attacks and will still maintain a log for them, but won't block them. You can examine the logs later to determine what you can do to boost the safety of your Internet sites since you'll find information such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity reacted, etcetera. The rules which we employ are commercial, hence they are constantly updated by a security firm, but to be on the safe side, our administrators also add custom rules once in a while as to deal with any new threats they have found.