ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and if it detects an intrusion attempt, it prevents it. The firewall additionally keeps a more thorough log for the traffic than any server does, so you will manage to keep an eye on what is going on with your Internet sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it identifies whether somebody is trying to log in to the administration area of a particular script several times or if a request is sent to execute a file with a certain command. In these instances these attempts set off the corresponding rules and the software hinders the attempts immediately, and then records comprehensive info about them inside its logs. ModSecurity is among the most effective software firewalls on the market and it can protect your web applications against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Shared Web Hosting

ModSecurity is available on all shared web hosting web servers, so when you choose to host your Internet sites with our firm, they shall be protected against a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you'll need to do on your end. You will be able to stop ModSecurity for any Internet site if required, or to activate a detection mode, so all activity will be recorded, but the firewall won't take any real action. You shall be able to view specific logs using your Hepsia CP including the IP where the attack came from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the protection of our customers' websites seriously, we use a selection of commercial rules which we take from one of the top companies that maintain this sort of rules. Our administrators also include custom rules to make certain that your sites shall be protected against as many risks as possible.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions that we offer feature ModSecurity and because the firewall is turned on by default, any website which you create under a domain or a subdomain shall be secured right from the start. An independent section inside the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall allow you to stop and start the firewall for any website or switch on a detection mode. With the latter, ModSecurity shall not take any action, but it shall still recognize possible attacks and shall keep all information within a log as if it were completely active. The logs can be found in the same section of the Control Panel and they offer details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules we employ on our machines are a mix between commercial ones from a security firm and custom ones developed by our system admins. Therefore, we offer higher security for your web programs as we can shield them from attacks even before security companies release updates for new threats.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web apps shall be secured from the moment your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if needed, you can deactivate it with a mouse click through the corresponding section of Hepsia. You can also set it to work in detection mode, so it'll maintain a comprehensive log of any potential attacks without taking any action to stop them. The logs can be found within the exact same section and offer info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For optimum security, we employ not just commercial rules from a business working in the field of web security, but also custom ones which our administrators include manually so as to respond to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers Hosting

When you decide to host your sites on a dedicated server with the Hepsia CP, your web programs will be secured straight away because ModSecurity is supplied with all Hepsia-based solutions. You shall be able to manage the firewall without difficulty and if required, you will be able to turn it off or enable its passive mode when it shall only maintain a log of what is happening without taking any action to prevent possible attacks. The logs which you'll find inside the exact same section of the CP are quite detailed and contain info about the attacker IP, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etc. This info will allow you to take measures and increase the security of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our administrators add whenever they detect attacks that have not yet been included in the commercial pack.