ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and when it identifies an intrusion attempt, it blocks it. The firewall also keeps a more thorough log for the website visitors than any web server does, so you shall be able to keep an eye on what is going on with your Internet sites a lot better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it detects if someone is trying to log in to the admin area of a specific script multiple times or if a request is sent to execute a file with a specific command. In these cases these attempts trigger the corresponding rules and the software blocks the attempts instantly, and then records comprehensive info about them in its logs. ModSecurity is among the very best software firewalls on the market and it could easily protect your web applications against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Cloud Hosting

ModSecurity is offered with every cloud hosting package which we offer and it's activated by default for every domain or subdomain which you include through your Hepsia Control Panel. In the event that it interferes with any of your applications or you would like to disable it for some reason, you'll be able to achieve that through the ModSecurity section of Hepsia with merely a mouse click. You could also activate a passive mode, so the firewall will recognize possible attacks and maintain a log, but won't take any action. You'll be able to view comprehensive logs in the same section, including the IP where the attack originated from, what precisely the attacker attempted to do and at what time, what ModSecurity did, etc. For max security of our clients we use a collection of commercial firewall rules mixed with custom ones which are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity as a standard inside all semi-dedicated hosting plans, so your web applications shall be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts shall allow you to activate or disable the firewall for any Internet site with a mouse click. You will also have the ability to turn on a passive detection mode in which ModSecurity will maintain a log of possible attacks without really preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response that attack caused, where it came from, and so on. The list of rules that we use is regularly updated in order to match any new risks which could appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our administrators add in case they discover a threat which is not present in the commercial list yet.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers which are provided with the Hepsia hosting Control Panel, so your web apps shall be protected from the second your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you could disable it with a click through the corresponding section of Hepsia. You can also set it to work in detection mode, so it will keep an extensive log of any possible attacks without taking any action to prevent them. The logs can be found in the very same section and provide information about the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For best security, we employ not just commercial rules from a company operating in the field of web security, but also custom ones which our admins include personally so as to respond to new threats which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Web Hosting

When you opt to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web applications will be protected straight away as ModSecurity is supplied with all Hepsia-based solutions. You will be able to regulate the firewall easily and if needed, you shall be able to turn it off or enable its passive mode when it shall only keep a log of what is happening without taking any action to stop possible attacks. The logs that you can find inside the same section of the CP are extremely detailed and contain details about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so on. This data will allow you to take measures and increase the protection of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our admins include whenever they identify attacks which haven't yet been included within the commercial pack.