ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and if it identifies an intrusion attempt, it prevents it. The firewall also maintains a more comprehensive log for the site visitors than any server does, so you shall be able to keep an eye on what's happening with your sites a lot better than if you rely only on conventional logs. ModSecurity employs security rules based on which it stops attacks. For instance, it identifies if somebody is attempting to log in to the administrator area of a specific script multiple times or if a request is sent to execute a file with a certain command. In such instances these attempts set off the corresponding rules and the firewall software hinders the attempts immediately, and then records in-depth information about them inside its logs. ModSecurity is amongst the best software firewalls out there and it can protect your web applications against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting packages that we provide and it will be turned on automatically for any domain or subdomain that you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to switch on and disable it with just a click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to prevent them. The log for any of your sites shall feature in-depth information including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are regularly updated and comprise of both commercial ones which we get from a third-party security business and custom ones that our system administrators include in case that they detect a new sort of attacks. That way, the websites which you host here shall be a lot more protected with no action required on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages that we offer feature ModSecurity and given that the firewall is turned on by default, any Internet site which you set up under a domain or a subdomain shall be protected immediately. An independent section within the Hepsia CP which comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to start and stop the firewall for any website or switch on a detection mode. With the last mentioned, ModSecurity shall not take any action, but it'll still detect possible attacks and shall keep all data in a log as if it were fully active. The logs could be found in the very same section of the CP and they offer information about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so on. The security rules that we use on our web servers are a mix between commercial ones from a security company and custom ones created by our system administrators. As a result, we offer increased security for your web applications as we can protect them from attacks before security businesses release updates for new threats.

ModSecurity in VPS Web Hosting

All virtual private servers which are provided with the Hepsia CP include ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the web server, so there will not be anything special which you will have to do to protect your Internet sites. It will take you simply a click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any measures to prevent intrusions. You'll be able to view the logs produced in active or passive mode through the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall employed to tackle it, and so on. We employ a mixture of commercial and custom rules in order to make sure that ModSecurity shall block out as many risks as possible, consequently boosting the security of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

All of our dedicated servers that are installed with the Hepsia hosting Control Panel feature ModSecurity, so any application that you upload or set up will be protected from the very beginning and you'll not need to bother about common attacks or vulnerabilities. A separate section inside Hepsia will allow you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you will see in the logs can easily enable you to to secure your websites better - the IP address an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, and so on. With this data, you'll be able to see if an Internet site needs an update, if you ought to block IPs from accessing your web server, etc. Besides the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too when they discover a new threat that's not yet included in the commercial bundle.