ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and if it detects an intrusion attempt, it blocks it. The firewall also maintains a more detailed log for the site visitors than any web server does, so you'll manage to monitor what is happening with your websites much better than if you rely merely on standard logs. ModSecurity employs security rules based on which it stops attacks. For example, it recognizes if somebody is trying to log in to the administrator area of a given script a number of times or if a request is sent to execute a file with a specific command. In such situations these attempts set off the corresponding rules and the firewall program hinders the attempts in real time, then records comprehensive info about them inside its logs. ModSecurity is one of the best software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.

ModSecurity in Website Hosting

We provide ModSecurity with all website hosting packages, so your web apps will be protected against destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it via the respective area of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you shall discover in Hepsia are very detailed and include information about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, and so forth. We use a group of commercial rules that are constantly updated, but sometimes our administrators add custom rules as well in order to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you opt to host your websites with our company, there will not be anything special you will have to do given that the firewall is turned on by default for all domains and subdomains that you add through your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a particular Internet site or switch on the so-called detection mode in which case the firewall will still work and record data, but will not do anything to prevent possible attacks against your websites. Detailed logs shall be available within your Control Panel and you shall be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, and so on. We use 2 kinds of rules on our servers - commercial ones from a business that operates in the field of web security, and custom made ones which our admins occasionally include to respond to newly discovered threats on time.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting CP, so your web apps will be protected from the moment your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you could disable it with a click from the corresponding section of Hepsia. You can also set it to work in detection mode, so it shall keep a detailed log of any possible attacks without taking any action to prevent them. The logs are available within the exact same section and provide info about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For best security, we use not simply commercial rules from a firm operating in the field of web security, but also custom ones our admins include personally in order to react to new threats that are still not dealt with in the commercial rules.

ModSecurity in Dedicated Hosting

ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you won't need to do anything specific on your end to use it because it's switched on by default every time you include a new domain or subdomain on your hosting server. In case it interferes with some of your apps, you will be able to stop it through the respective part of Hepsia, or you may leave it operating in passive mode, so it shall identify attacks and will still keep a log for them, but will not block them. You can analyze the logs later to determine what you can do to enhance the security of your Internet sites as you shall find info such as where an intrusion attempt originated from, what website was attacked and in accordance with what rule ModSecurity reacted, and so on. The rules which we employ are commercial, therefore they're constantly updated by a security firm, but to be on the safe side, our administrators also include custom rules from time to time in order to react to any new threats they have found.