ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and in case it detects an intrusion attempt, it prevents it. The firewall also keeps a more detailed log for the site visitors than any server does, so you shall be able to keep an eye on what's going on with your sites much better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it detects if someone is trying to log in to the admin area of a specific script multiple times or if a request is sent to execute a file with a certain command. In such circumstances these attempts trigger the corresponding rules and the firewall software blocks the attempts instantly, then records comprehensive information about them in its logs. ModSecurity is amongst the most effective software firewalls out there and it can protect your web applications against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Cloud Website Hosting

ModSecurity can be found with each and every cloud website hosting package which we provide and it is switched on by default for every domain or subdomain that you include via your Hepsia CP. In case it disrupts any of your programs or you'd like to disable it for any reason, you'll be able to do that through the ModSecurity section of Hepsia with just a mouse click. You could also activate a passive mode, so the firewall will identify potential attacks and maintain a log, but will not take any action. You'll be able to view detailed logs in the very same section, including the IP address where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, etcetera. For optimum security of our clients we use a group of commercial firewall rules blended with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you decide to host your Internet sites with us, there won't be anything special you'll need to do given that the firewall is switched on by default for all domains and subdomains which you add via your hosting CP. If required, you'll be able to disable ModSecurity for a certain Internet site or activate the so-called detection mode in which case the firewall will still function and record info, but won't do anything to stop potential attacks on your sites. Thorough logs shall be available inside your CP and you will be able to see what type of attacks happened, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks originated from, and so forth. We employ two sorts of rules on our servers - commercial ones from a company that operates in the field of web security, and customized ones that our administrators occasionally add to respond to newly identified risks in a timely manner.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers which we offer and it'll be turned on automatically for any new domain or subdomain which you add on the hosting server. In this way, any web application which you install will be protected from the very beginning without doing anything personally on your end. The firewall can be handled from the section of the CP that has the same name. This is the location in whichyou'll be able to disable ModSecurity or activate its passive mode, so it won't take any action toward threats, but shall still keep a thorough log. The recorded data is available in the same area as well and you'll be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules we use on our servers are a mix between commercial ones that we get from a security company and custom ones that are added by our staff to optimize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

All of our dedicated servers which are set up with the Hepsia hosting CP come with ModSecurity, so any program you upload or install will be secured from the very beginning and you will not have to worry about common attacks or vulnerabilities. A separate section inside Hepsia will enable you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but does not take actions to stop them. What you shall see in the logs can easily allow you to to secure your websites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this info, you can see if a website needs an update, whether you ought to block IPs from accessing your web server, etcetera. On top of the third-party commercial security rules for ModSecurity we use, our admins include custom ones as well if they discover a new threat which is not yet in the commercial bundle.