ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its performance and when it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more thorough log for the site visitors than any web server does, so you shall manage to monitor what is going on with your sites better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it stops attacks. For instance, it recognizes if someone is trying to log in to the administrator area of a given script a number of times or if a request is sent to execute a file with a certain command. In such circumstances these attempts set off the corresponding rules and the software hinders the attempts instantly, after that records in-depth details about them inside its logs. ModSecurity is among the best software firewalls out there and it can protect your web applications against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Cloud Website Hosting

ModSecurity comes by default with all cloud website hosting plans which we offer and it will be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with only a click or set it to detection mode, so it'll maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your websites will include detailed information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are regularly updated and include both commercial ones that we get from a third-party security firm and custom ones which our system administrators include in the event that they detect a new sort of attacks. That way, the websites which you host here will be way more protected without any action needed on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you decide to host your Internet sites with our company, there will not be anything special you will have to do as the firewall is switched on by default for all domains and subdomains that you add through your hosting CP. If required, you'll be able to disable ModSecurity for a given website or turn on the so-called detection mode in which case the firewall will still operate and record info, but shall not do anything to prevent potential attacks on your Internet sites. Thorough logs shall be readily available in your Control Panel and you will be able to see what sort of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, and so forth. We employ two kinds of rules on our servers - commercial ones from a business that operates in the field of web security, and custom made ones that our admins often add to respond to newly discovered risks in a timely manner.

ModSecurity in VPS Servers

Safety is essential to us, so we install ModSecurity on all VPS servers that are set up with the Hepsia CP as a standard. The firewall can be managed through a dedicated section within Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't need to do anything by hand. You shall also be able to deactivate it or activate the so-called detection mode, so it'll maintain a log of potential attacks you can later study, but shall not block them. The logs in both passive and active modes include info about the form of the attack and how it was prevented, what IP it originated from and other useful information that might help you to tighten the security of your websites by updating them or blocking IPs, as an example. In addition to the commercial rules which we get for ModSecurity from a third-party security enterprise, we also implement our own rules because from time to time we discover specific attacks which are not yet present inside the commercial group. This way, we can improve the security of your VPS instantly as opposed to waiting for an official update.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers that are set up with our Hepsia CP and you'll not need to do anything specific on your end to employ it as it's turned on by default each time you include a new domain or subdomain on your web server. In case it disrupts some of your applications, you shall be able to stop it through the respective area of Hepsia, or you can leave it in passive mode, so it'll identify attacks and will still keep a log for them, but won't block them. You could examine the logs later to find out what you can do to enhance the safety of your websites as you shall find details such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity reacted, etc. The rules which we employ are commercial, thus they're regularly updated by a security firm, but to be on the safe side, our administrators also include custom rules every now and then in order to respond to any new threats they have identified.