ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and in case it identifies an intrusion attempt, it blocks it. The firewall additionally maintains a more thorough log for the website visitors than any server does, so you will be able to keep an eye on what's going on with your Internet sites better than if you rely simply on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it recognizes if somebody is attempting to log in to the administration area of a given script a number of times or if a request is sent to execute a file with a certain command. In these situations these attempts trigger the corresponding rules and the software blocks the attempts instantly, after that records detailed info about them inside its logs. ModSecurity is one of the very best software firewalls out there and it could easily protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins often.

ModSecurity in Cloud Web Hosting

ModSecurity is supplied with all cloud web hosting machines, so when you opt to host your Internet sites with our company, they will be resistant to an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you will have to do on your end. You'll be able to stop ModSecurity for any Internet site if required, or to enable a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You will be able to view specific logs using your Hepsia Control Panel including the IP where the attack came from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the safety of our clients' sites very seriously, we employ a set of commercial rules which we get from one of the best companies which maintain this sort of rules. Our admins also include custom rules to make certain that your sites will be protected against as many risks as possible.

ModSecurity in Semi-dedicated Servers

Any web app you set up within your new semi-dedicated server account will be protected by ModSecurity as the firewall comes with all our hosting solutions and is switched on by default for any domain and subdomain you add or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated area in Hepsia where not simply can you activate or deactivate it completely, but you could also enable a passive mode, so the firewall shall not block anything, but it'll still maintain an archive of potential attacks. This requires just a click and you will be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall uses two groups of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one which our admins update personally in order to respond to recently discovered threats immediately.

ModSecurity in VPS Servers

Protection is essential to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section within Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you will not have to do anything manually. You will also be able to deactivate it or turn on the so-called detection mode, so it'll keep a log of possible attacks you can later study, but will not prevent them. The logs in both passive and active modes contain details about the kind of the attack and how it was stopped, what IP it originated from and other important information which could help you to tighten the security of your websites by updating them or blocking IPs, for example. In addition to the commercial rules which we get for ModSecurity from a third-party security enterprise, we also employ our own rules because occasionally we detect specific attacks which aren't yet present inside the commercial group. This way, we can easily increase the protection of your VPS instantly as opposed to awaiting a certified update.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are integrated with our Hepsia CP and you will not have to do anything specific on your end to employ it because it's activated by default every time you include a new domain or subdomain on your server. In case it interferes with any of your applications, you shall be able to stop it through the respective part of Hepsia, or you can leave it operating in passive mode, so it shall detect attacks and shall still maintain a log for them, but will not prevent them. You could examine the logs later to determine what you can do to increase the protection of your sites since you shall find details such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity responded, etcetera. The rules which we use are commercial, hence they are frequently updated by a security company, but to be on the safe side, our admins also include custom rules once in a while as to react to any new threats they have discovered.