ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall also keeps a more detailed log for the site visitors than any web server does, so you will be able to keep an eye on what is happening with your websites better than if you rely only on standard logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it detects if anyone is trying to log in to the administration area of a particular script a number of times or if a request is sent to execute a file with a certain command. In these cases these attempts trigger the corresponding rules and the firewall program hinders the attempts instantly, then records in-depth information about them inside its logs. ModSecurity is one of the best software firewalls available and it can protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Cloud Website Hosting

ModSecurity is available with each cloud website hosting plan which we offer and it is switched on by default for any domain or subdomain which you include through your Hepsia CP. In case it disrupts any of your programs or you'd like to disable it for any reason, you'll be able to do that through the ModSecurity area of Hepsia with merely a click. You may also activate a passive mode, so the firewall will detect potential attacks and maintain a log, but will not take any action. You could view detailed logs in the exact same section, including the IP address where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, etc. For max security of our clients we use a set of commercial firewall rules combined with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web program which you set up inside your new semi-dedicated hosting account will be protected by ModSecurity because the firewall is included with all our hosting plans and is activated by default for any domain and subdomain that you include or create via your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section in Hepsia where not only can you activate or deactivate it fully, but you could also switch on a passive mode, so the firewall shall not block anything, but it shall still keep a record of potential attacks. This normally requires only a click and you'll be able to look at the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, and so on. The firewall employs two groups of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our administrators update personally in order to respond to newly discovered threats as fast as possible.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web applications shall be secured from the second your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you could disable it with a click through the corresponding section of Hepsia. You can also set it to operate in detection mode, so it shall keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found inside the same section and provide information regarding the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For best security, we use not only commercial rules from a firm working in the field of web security, but also custom ones our admins add personally in order to respond to new risks that are still not addressed in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain which you create on the hosting server. In case that a web application does not function properly, you can either switch off the firewall or set it to operate in passive mode. The latter means that ModSecurity will maintain a log of any possible attack which might happen, but will not take any action to prevent it. The logs created in passive or active mode shall give you additional details about the exact file that was attacked, the nature of the attack and the IP address it came from, and so forth. This data will enable you to choose what steps you can take to improve the protection of your Internet sites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules that we use are updated often with a commercial pack from a third-party security enterprise we work with, but from time to time our staff include their own rules too in case they discover a new potential threat.