ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and if it identifies an intrusion attempt, it blocks it. The firewall also maintains a more thorough log for the traffic than any server does, so you will manage to keep track of what's going on with your websites a lot better than if you rely only on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it detects if somebody is attempting to log in to the administration area of a specific script a number of times or if a request is sent to execute a file with a certain command. In these situations these attempts set off the corresponding rules and the firewall software blocks the attempts instantly, after that records detailed info about them in its logs. ModSecurity is amongst the very best software firewalls on the market and it could easily protect your web apps against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Web Hosting

ModSecurity comes standard with all cloud web hosting packages which we supply and it'll be activated automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and deactivate it with simply a click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to prevent them. The log for any of your sites shall feature elaborate info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules we use are constantly updated and consist of both commercial ones which we get from a third-party security business and custom ones that our system admins add in the event that they detect a new type of attacks. This way, the sites you host here will be far more secure with no action required on your end.

ModSecurity in Semi-dedicated Hosting

We've incorporated ModSecurity as a standard in all semi-dedicated hosting packages, so your web apps shall be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will allow you to switch on or turn off the firewall for any Internet site with a click. You will also be able to switch on a passive detection mode with which ModSecurity will keep a log of potential attacks without actually stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response that attack initiated, where it came from, and so on. The list of rules which we use is frequently updated in order to match any new threats that may appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones which our administrators add in case they discover a threat that is not present in the commercial list yet.

ModSecurity in VPS

ModSecurity is included with all Hepsia-based virtual private servers that we offer and it'll be activated automatically for any new domain or subdomain which you include on the server. In this way, any web app you install shall be protected right from the start without doing anything personally on your end. The firewall can be managed from the section of the CP which bears the same name. This is the location in whichyou could turn off ModSecurity or activate its passive mode, so it will not take any action toward threats, but will still maintain a detailed log. The recorded information is available in the same area as well and you will be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules that we employ on our servers are a combination between commercial ones which we obtain from a security firm and custom ones that are added by our administrators to maximize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

When you choose to host your Internet sites on a dedicated server with the Hepsia CP, your web apps shall be secured right from the start as ModSecurity is supplied with all Hepsia-based packages. You shall be able to control the firewall easily and if required, you will be able to turn it off or activate its passive mode when it'll only keep a log of what's happening without taking any action to stop potential attacks. The logs that you can find within the exact same section of the CP are really detailed and feature information about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so on. This information will permit you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our admins include whenever they identify attacks that have not yet been included in the commercial pack.