ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its operation and in case it discovers an intrusion attempt, it prevents it. The firewall also keeps a more comprehensive log for the website visitors than any web server does, so you will be able to keep track of what is happening with your sites better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it recognizes if someone is trying to log in to the administrator area of a specific script several times or if a request is sent to execute a file with a certain command. In these instances these attempts trigger the corresponding rules and the firewall software hinders the attempts instantly, after that records comprehensive information about them within its logs. ModSecurity is one of the best software firewalls available and it can protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting packages that we provide and it shall be turned on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and deactivate it with just a click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your Internet sites shall feature detailed information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are frequently updated and incorporate both commercial ones which we get from a third-party security business and custom ones our system administrators include in case that they detect a new kind of attacks. That way, the websites you host here will be way more protected with no action needed on your end.

ModSecurity in Semi-dedicated Servers

We've integrated ModSecurity as a standard inside all semi-dedicated server packages, so your web applications will be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will allow you to enable or disable the firewall for any website with a click. You shall also be able to activate a passive detection mode in which ModSecurity will maintain a log of possible attacks without really preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response that attack generated, where it came from, etcetera. The list of rules that we employ is constantly updated in order to match any new risks that might appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones that our admins include if they find a threat which is not present within the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers which we offer and it shall be switched on automatically for any new domain or subdomain which you add on the machine. That way, any web app you install shall be protected right away without doing anything personally on your end. The firewall could be handled through the section of the Control Panel that bears the same name. This is the location whereyou can disable ModSecurity or let its passive mode, so it will not take any action against threats, but shall still keep a thorough log. The recorded data is available in the same section as well and you will be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules that we employ on our servers are a mix between commercial ones we get from a security organization and custom ones which are added by our administrators to maximize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it as it is switched on by default each time you add a new domain or subdomain on your web server. In the event that it disrupts some of your apps, you'll be able to stop it through the respective area of Hepsia, or you can leave it operating in passive mode, so it shall detect attacks and will still maintain a log for them, but shall not prevent them. You may analyze the logs later to learn what you can do to enhance the protection of your Internet sites since you'll find details such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity responded, etc. The rules we use are commercial, thus they're frequently updated by a security firm, but to be on the safe side, our staff also add custom rules from time to time in order to respond to any new threats they have found.