ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and if it discovers an intrusion attempt, it prevents it. The firewall furthermore keeps a more detailed log for the website visitors than any server does, so you shall manage to monitor what is going on with your websites better than if you rely simply on standard logs. ModSecurity employs security rules based on which it prevents attacks. For example, it identifies if anyone is trying to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a specific command. In such circumstances these attempts trigger the corresponding rules and the firewall software blocks the attempts instantly, after that records detailed details about them within its logs. ModSecurity is among the very best software firewalls on the market and it can easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Hosting

ModSecurity is provided with all hosting machines, so if you opt to host your websites with our firm, they will be resistant to a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you will need to do on your end. You shall be able to stop ModSecurity for any Internet site if necessary, or to activate a detection mode, so all activity will be recorded, but the firewall won't take any real action. You shall be able to view specific logs using your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the safety of our customers' sites very seriously, we use a selection of commercial rules which we get from one of the best firms that maintain such rules. Our admins also add custom rules to ensure that your Internet sites shall be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Servers

We have incorporated ModSecurity by default within all semi-dedicated server products, so your web apps shall be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts shall permit you to enable or turn off the firewall for any Internet site with a click. You'll also be able to activate a passive detection mode in which ModSecurity will maintain a log of potential attacks without really preventing them. The detailed logs contain the nature of the attack and what ModSecurity response that attack caused, where it came from, etcetera. The list of rules we use is constantly updated in order to match any new threats that might appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones which our admins add in the event that they find a threat that is not present in the commercial list yet.

ModSecurity in VPS Servers

All VPS servers which are set up with the Hepsia CP feature ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the web server, so there will not be anything special that you'll need to do to protect your websites. It will take you only a click to stop ModSecurity if needed or to activate its passive mode so that it records what happens without taking any measures to stop intrusions. You shall be able to view the logs generated in passive or active mode via the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall employed to handle it, etcetera. We employ a mixture of commercial and custom rules so as to ensure that ModSecurity shall stop as many threats as possible, consequently improving the security of your web programs as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is provided as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain that you create on the server. In case that a web app doesn't function adequately, you can either disable the firewall or set it to work in passive mode. The latter means that ModSecurity shall maintain a log of any potential attack which could happen, but will not take any action to prevent it. The logs generated in active or passive mode shall offer you more details about the exact file that was attacked, the nature of the attack and the IP it came from, etc. This info shall enable you to decide what steps you can take to boost the protection of your sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules we use are updated regularly with a commercial pack from a third-party security provider we work with, but oftentimes our staff add their own rules too when they come across a new potential threat.