ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and if it discovers an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the traffic than any server does, so you'll manage to keep track of what's happening with your sites better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it stops attacks. For instance, it recognizes whether someone is attempting to log in to the admin area of a particular script several times or if a request is sent to execute a file with a specific command. In these situations these attempts set off the corresponding rules and the firewall software blocks the attempts in real time, after that records detailed details about them in its logs. ModSecurity is among the very best software firewalls on the market and it can easily protect your web applications against many threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Website Hosting

We offer ModSecurity with all cloud website hosting plans, so your web apps will be shielded from harmful attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you'll be able to stop it using the respective area of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you shall find within Hepsia are incredibly detailed and include information about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, and so forth. We employ a range of commercial rules that are regularly updated, but sometimes our administrators include custom rules as well so as to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you decide to host your sites with us, there shall not be anything special you'll have to do since the firewall is activated by default for all domains and subdomains that you add through your hosting CP. If required, you could disable ModSecurity for a given site or switch on the so-called detection mode in which case the firewall shall still work and record info, but won't do anything to stop potential attacks on your sites. Thorough logs will be accessible in your Control Panel and you shall be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks originated from, etcetera. We employ two types of rules on our servers - commercial ones from a company that operates in the field of web security, and custom made ones that our admins occasionally include to respond to newly discovered threats in a timely manner.

ModSecurity in VPS Servers

All VPS servers that are provided with the Hepsia Control Panel feature ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the server, so there will not be anything special which you'll have to do to protect your sites. It shall take you just a mouse click to stop ModSecurity if required or to switch on its passive mode so that it records what goes on without taking any actions to prevent intrusions. You'll be able to view the logs generated in active or passive mode through the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall used to handle it, etcetera. We employ a mixture of commercial and custom rules in order to make sure that ModSecurity will block out as many threats as possible, hence boosting the security of your web apps as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it since it is turned on by default every time you include a new domain or subdomain on your server. In the event that it disrupts some of your applications, you will be able to stop it through the respective section of Hepsia, or you could leave it in passive mode, so it shall identify attacks and shall still keep a log for them, but will not prevent them. You can look at the logs later to find out what you can do to boost the protection of your sites as you'll find details such as where an intrusion attempt originated from, what website was attacked and based upon what rule ModSecurity responded, and so forth. The rules we employ are commercial, therefore they're regularly updated by a security firm, but to be on the safe side, our staff also add custom rules from time to time in order to react to any new threats they have found.