ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and in case it discovers an intrusion attempt, it prevents it. The firewall additionally keeps a more thorough log for the site visitors than any server does, so you'll be able to monitor what is going on with your Internet sites better than if you rely only on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it recognizes whether somebody is attempting to log in to the administration area of a given script a number of times or if a request is sent to execute a file with a certain command. In such situations these attempts trigger the corresponding rules and the software hinders the attempts in real time, after that records comprehensive details about them inside its logs. ModSecurity is among the most effective software firewalls out there and it can easily protect your web apps against many threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Website Hosting

ModSecurity comes standard with all website hosting solutions which we provide and it will be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to switch on and disable it with only a click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to stop them. The log for any of your Internet sites will contain in-depth information such as the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are regularly updated and comprise of both commercial ones we get from a third-party security firm and custom ones that our system admins add in the event that they detect a new sort of attacks. This way, the websites that you host here will be a lot more protected with no action required on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you choose to host your sites with our company, there shall not be anything special you'll have to do as the firewall is activated by default for all domains and subdomains which you add using your hosting Control Panel. If necessary, you could disable ModSecurity for a given site or switch on the so-called detection mode in which case the firewall will still function and record data, but will not do anything to prevent potential attacks on your websites. Detailed logs shall be available within your CP and you will be able to see what sort of attacks happened, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etc. We employ 2 types of rules on our servers - commercial ones from a company which operates in the field of web security, and customized ones that our admins occasionally add to respond to newly identified threats in a timely manner.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are provided with the Hepsia hosting CP, so your web applications shall be protected from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you can disable it with a mouse click through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it will keep an extensive log of any potential attacks without taking any action to stop them. The logs are available within the exact same section and offer information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was activated to stop it. For optimum security, we use not just commercial rules from a business working in the field of web security, but also custom ones that our administrators add personally so as to react to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is available as standard with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain that you create on the hosting server. In case that a web application doesn't work adequately, you can either disable the firewall or set it to work in passive mode. The latter means that ModSecurity shall keep a log of any potential attack that may occur, but shall not take any action to prevent it. The logs produced in passive or active mode shall offer you more details about the exact file that was attacked, the form of the attack and the IP it came from, etc. This information will permit you to decide what measures you can take to increase the safety of your websites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules which we employ are updated regularly with a commercial pack from a third-party security firm we work with, but sometimes our administrators include their own rules also in case they come across a new potential threat.