ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and if it detects an intrusion attempt, it prevents it. The firewall additionally maintains a more comprehensive log for the website visitors than any server does, so you'll be able to keep an eye on what is going on with your websites a lot better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it stops attacks. For example, it detects whether someone is attempting to log in to the admin area of a certain script multiple times or if a request is sent to execute a file with a particular command. In such instances these attempts trigger the corresponding rules and the firewall software hinders the attempts in real time, then records in-depth details about them within its logs. ModSecurity is amongst the best software firewalls on the market and it can easily protect your web applications against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Shared Website Hosting

ModSecurity is supplied with all shared website hosting servers, so when you decide to host your sites with our firm, they shall be resistant to an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you shall have to do on your end. You will be able to stop ModSecurity for any site if needed, or to enable a detection mode, so all activity will be recorded, but the firewall will not take any real action. You will be able to view specific logs using your Hepsia Control Panel including the IP address where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. As we take the protection of our clients' sites seriously, we use a collection of commercial rules which we get from one of the best firms that maintain such rules. Our administrators also include custom rules to make sure that your websites will be protected against as many risks as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server solutions and if you choose to host your Internet sites with our company, there shall not be anything special you will have to do given that the firewall is turned on by default for all domains and subdomains you include via your hosting Control Panel. If required, you can disable ModSecurity for a particular Internet site or turn on the so-called detection mode in which case the firewall shall still function and record info, but will not do anything to prevent potential attacks on your Internet sites. Comprehensive logs shall be available within your CP and you'll be able to see what type of attacks happened, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks came from, and so on. We use 2 types of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom ones that our admins sometimes include to respond to newly found threats in a timely manner.

ModSecurity in VPS Servers

Protection is of the utmost importance to us, so we install ModSecurity on all VPS servers that are made available with the Hepsia CP by default. The firewall can be managed through a dedicated section in Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you'll not need to do anything by hand. You shall also be able to disable it or activate the so-called detection mode, so it shall keep a log of possible attacks which you can later analyze, but won't stop them. The logs in both passive and active modes contain details about the type of the attack and how it was eliminated, what IP it originated from and other important info which might help you to tighten the security of your sites by updating them or blocking IPs, for example. On top of the commercial rules that we get for ModSecurity from a third-party security company, we also implement our own rules since occasionally we detect specific attacks that aren't yet present inside the commercial group. That way, we can improve the security of your Virtual private server promptly instead of awaiting an official update.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are set up with our Hepsia CP and you will not have to do anything specific on your end to use it since it's activated by default every time you include a new domain or subdomain on your web server. In the event that it disrupts some of your applications, you shall be able to stop it via the respective area of Hepsia, or you can leave it in passive mode, so it shall detect attacks and will still keep a log for them, but won't block them. You'll be able to examine the logs later to determine what you can do to boost the safety of your websites since you'll find details such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity responded, and so on. The rules which we use are commercial, hence they're regularly updated by a security firm, but to be on the safe side, our administrators also add custom rules once in a while in order to respond to any new threats they have discovered.