ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its operation and in case it discovers an intrusion attempt, it prevents it. The firewall also maintains a more comprehensive log for the website visitors than any web server does, so you will be able to monitor what is going on with your sites better than if you rely only on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it identifies whether somebody is attempting to log in to the administration area of a specific script multiple times or if a request is sent to execute a file with a certain command. In such instances these attempts set off the corresponding rules and the firewall software blocks the attempts immediately, and then records comprehensive details about them inside its logs. ModSecurity is among the very best software firewalls on the market and it can protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.
ModSecurity in Shared Hosting
We provide ModSecurity with all shared hosting solutions, so your Internet apps shall be protected against harmful attacks. The firewall is turned on by default for all domains and subdomains, but in case you'd like, you'll be able to stop it via the respective section of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you will discover within Hepsia are extremely detailed and include info about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, and so on. We employ a set of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to efficiently protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Servers
Any web app you set up in your new semi-dedicated server account shall be protected by ModSecurity since the firewall is provided with all our hosting plans and is switched on by default for any domain and subdomain that you add or create using your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated section in Hepsia where not simply can you activate or deactivate it completely, but you could also activate a passive mode, so the firewall shall not stop anything, but it will still keep a record of possible attacks. This normally requires just a click and you shall be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, and so on. The firewall employs two sets of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one which our admins update personally in order to respond to recently discovered risks immediately.
ModSecurity in VPS Servers
Protection is essential to us, so we set up ModSecurity on all VPS servers which are provided with the Hepsia CP as a standard. The firewall can be managed through a dedicated section inside Hepsia and is activated automatically when you add a new domain or create a subdomain, so you will not need to do anything by hand. You shall also be able to deactivate it or activate the so-called detection mode, so it shall maintain a log of possible attacks you can later analyze, but will not prevent them. The logs in both passive and active modes offer info regarding the type of the attack and how it was prevented, what IP it came from and other important data that may help you to tighten the security of your websites by updating them or blocking IPs, as an example. Besides the commercial rules we get for ModSecurity from a third-party security enterprise, we also use our own rules as from time to time we detect specific attacks that aren't yet present in the commercial group. That way, we can increase the security of your VPS instantly instead of awaiting an official update.
ModSecurity in Dedicated Servers
When you decide to host your sites on a dedicated server with the Hepsia Control Panel, your web applications will be protected immediately since ModSecurity is provided with all Hepsia-based plans. You shall be able to control the firewall with ease and if required, you'll be able to turn it off or switch on its passive mode when it shall only keep a log of what's happening without taking any action to prevent possible attacks. The logs that you will find within the exact same section of the Control Panel are quite detailed and contain details about the attacker IP, what website and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, etc. This info will allow you to take measures and increase the protection of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our staff add whenever they recognize attacks which haven't yet been included within the commercial pack.