ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it discovers an intrusion attempt, it blocks it. The firewall additionally keeps a more comprehensive log for the traffic than any server does, so you shall be able to monitor what's going on with your websites better than if you rely simply on standard logs. ModSecurity works with security rules based on which it stops attacks. For example, it identifies if somebody is attempting to log in to the admin area of a certain script multiple times or if a request is sent to execute a file with a particular command. In such instances these attempts trigger the corresponding rules and the firewall blocks the attempts in real time, after that records detailed details about them in its logs. ModSecurity is among the very best software firewalls on the market and it can easily protect your web apps against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Website Hosting

We provide ModSecurity with all website hosting packages, so your Internet applications shall be resistant to harmful attacks. The firewall is activated as standard for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective section of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you will find in Hepsia are incredibly detailed and include data about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, etc. We employ a group of commercial rules which are frequently updated, but sometimes our admins include custom rules as well so as to better protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web app that you set up within your new semi-dedicated hosting account will be protected by ModSecurity as the firewall is provided with all our hosting solutions and is activated by default for any domain and subdomain that you add or create via your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section inside Hepsia where not only could you activate or deactivate it completely, but you may also enable a passive mode, so the firewall will not stop anything, but it'll still maintain a record of potential attacks. This normally requires just a click and you will be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, and so on. The firewall uses 2 sets of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one which our administrators update personally as to respond to recently discovered threats as quickly as possible.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting CP, so your web apps shall be secured from the instant your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you could disable it with a click via the corresponding section of Hepsia. You can also set it to function in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs can be found within the very same section and include information about the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For best security, we use not just commercial rules from a business operating in the field of web security, but also custom ones our admins include personally so as to respond to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Servers Hosting

If you decide to host your websites on a dedicated server with the Hepsia CP, your web programs shall be protected right from the start as ModSecurity is provided with all Hepsia-based solutions. You shall be able to regulate the firewall with ease and if needed, you will be able to turn it off or switch on its passive mode when it shall only maintain a log of what's occurring without taking any action to prevent potential attacks. The logs which you'll find in the same section of the Control Panel are incredibly detailed and include data about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, etc. This information will allow you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff include every time they detect attacks that have not yet been included in the commercial pack.