ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its overall performance and in case it identifies an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the traffic than any server does, so you shall be able to keep track of what's going on with your websites much better than if you rely only on conventional logs. ModSecurity uses security rules based on which it stops attacks. For example, it detects if anyone is attempting to log in to the admin area of a given script several times or if a request is sent to execute a file with a certain command. In these situations these attempts set off the corresponding rules and the firewall blocks the attempts in real time, then records detailed information about them in its logs. ModSecurity is one of the best software firewalls on the market and it can easily protect your web apps against many threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
We offer ModSecurity with all shared hosting plans, so your web applications will be resistant to harmful attacks. The firewall is activated as standard for all domains and subdomains, but if you'd like, you shall be able to stop it via the respective part of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you shall discover within Hepsia are quite detailed and feature info about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, and so forth. We employ a set of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Servers
Any web application which you set up inside your new semi-dedicated server account shall be protected by ModSecurity since the firewall is provided with all our hosting solutions and is turned on by default for any domain and subdomain that you add or create using your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not simply could you activate or deactivate it completely, but you could also activate a passive mode, so the firewall won't stop anything, but it shall still maintain a record of potential attacks. This takes simply a click and you'll be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, and so forth. The firewall employs 2 groups of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one that our admins update manually in order to respond to recently discovered risks at the earliest opportunity.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are set up with the Hepsia hosting CP, so your web apps shall be secured from the second your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if needed, you could deactivate it with a click via the corresponding section of Hepsia. You could also set it to function in detection mode, so it'll keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found in the same section and include info about the nature of the attack, what IP address it originated from and what ModSecurity rule was initiated to stop it. For best security, we use not only commercial rules from a firm working in the field of web security, but also custom ones which our admins add manually so as to react to new risks that are still not dealt with in the commercial rules.
ModSecurity in Dedicated Servers
When you decide to host your sites on a dedicated server with the Hepsia Control Panel, your web apps will be secured immediately since ModSecurity is available with all Hepsia-based plans. You shall be able to control the firewall with ease and if required, you will be able to turn it off or enable its passive mode when it shall only keep a log of what's occurring without taking any action to stop possible attacks. The logs which you can find within the very same section of the Control Panel are extremely detailed and feature info about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so forth. This information shall allow you to take measures and enhance the protection of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our admins include every time they recognize attacks that haven't yet been included in the commercial pack.