ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and if it identifies an intrusion attempt, it prevents it. The firewall furthermore maintains a more thorough log for the website visitors than any web server does, so you will be able to keep track of what's happening with your Internet sites better than if you rely merely on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes if somebody is attempting to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a specific command. In these situations these attempts set off the corresponding rules and the firewall software hinders the attempts immediately, and then records comprehensive details about them in its logs. ModSecurity is among the very best software firewalls on the market and it could easily protect your web applications against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Hosting

We provide ModSecurity with all hosting packages, so your web applications shall be resistant to harmful attacks. The firewall is switched on as standard for all domains and subdomains, but if you would like, you shall be able to stop it using the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you shall discover within Hepsia are quite detailed and include information about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, and so forth. We employ a group of commercial rules that are frequently updated, but sometimes our administrators include custom rules as well so as to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

We've incorporated ModSecurity by default within all semi-dedicated hosting plans, so your web applications shall be protected whenever you install them under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will allow you to activate or turn off the firewall for any website with a mouse click. You shall also have the ability to activate a passive detection mode in which ModSecurity shall maintain a log of possible attacks without really preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack caused, where it came from, and so on. The list of rules we use is regularly updated as to match any new threats that may appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our administrators include in the event that they find a threat that's not present inside the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting Control Panel, so your web programs will be secured from the moment your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you'll be able to disable it with a click of your mouse through the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall keep an extensive log of any possible attacks without taking any action to stop them. The logs can be found in the very same section and offer details about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For maximum security, we employ not just commercial rules from a company working in the field of web security, but also custom ones our administrators include manually in order to react to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers Hosting

When you choose to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured straight away because ModSecurity is provided with all Hepsia-based plans. You shall be able to manage the firewall with ease and if required, you shall be able to turn it off or switch on its passive mode when it will only maintain a log of what's occurring without taking any action to stop possible attacks. The logs that you will find in the exact same section of the Control Panel are really detailed and contain info about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to stop the intrusion, and so on. This info shall permit you to take measures and boost the protection of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our staff include every time they identify attacks that have not yet been included within the commercial pack.