ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and in case it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the traffic than any server does, so you will be able to monitor what is going on with your websites better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it stops attacks. For instance, it identifies whether anyone is attempting to log in to the administrator area of a specific script multiple times or if a request is sent to execute a file with a specific command. In these instances these attempts trigger the corresponding rules and the firewall program blocks the attempts in real time, then records comprehensive info about them in its logs. ModSecurity is among the most effective software firewalls available and it can protect your web apps against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Cloud Web Hosting

ModSecurity is available on all cloud web hosting web servers, so if you choose to host your sites with our business, they will be resistant to a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You'll be able to stop ModSecurity for any site if needed, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs using your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity dealt with the threat. Since we take the security of our customers' Internet sites very seriously, we employ a set of commercial rules that we take from one of the top firms that maintain this kind of rules. Our administrators also include custom rules to make certain that your sites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

We have integrated ModSecurity as a standard inside all semi-dedicated server packages, so your web apps will be protected as soon as you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will allow you to enable or disable the firewall for any website with a mouse click. You'll also be able to turn on a passive detection mode with which ModSecurity will maintain a log of possible attacks without actually preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack generated, where it originated from, and so on. The list of rules we employ is constantly updated as to match any new risks that might appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our administrators include in case they discover a threat which is not present within the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting CP, so your web applications will be secured from the second your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you'll be able to deactivate it with a mouse click through the corresponding section of Hepsia. You may also set it to operate in detection mode, so it'll keep a detailed log of any possible attacks without taking any action to prevent them. The logs can be found in the very same section and provide information about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For optimum security, we use not simply commercial rules from a business operating in the field of web security, but also custom ones our admins include personally so as to react to new risks which are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are integrated with our Hepsia CP and you will not have to do anything specific on your end to employ it because it is activated by default every time you add a new domain or subdomain on your hosting server. In the event that it disrupts some of your programs, you shall be able to stop it through the respective part of Hepsia, or you could leave it operating in passive mode, so it will detect attacks and shall still keep a log for them, but won't prevent them. You could look at the logs later to determine what you can do to boost the security of your Internet sites as you shall find information such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, and so forth. The rules which we use are commercial, thus they're frequently updated by a security provider, but to be on the safe side, our admins also include custom rules every now and then in order to respond to any new threats they have found.