ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and in case it identifies an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the website visitors than any web server does, so you'll manage to keep an eye on what's happening with your sites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it stops attacks. For example, it identifies if someone is attempting to log in to the administration area of a specific script multiple times or if a request is sent to execute a file with a certain command. In these situations these attempts set off the corresponding rules and the firewall software blocks the attempts right away, and then records detailed information about them within its logs. ModSecurity is one of the very best software firewalls out there and it could easily protect your web apps against many threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages which we offer come with ModSecurity and because the firewall is turned on by default, any Internet site that you create under a domain or a subdomain shall be secured right from the start. A separate section inside the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it will enable you to stop and start the firewall for any Internet site or enable a detection mode. With the last mentioned, ModSecurity shall not take any action, but it shall still detect possible attacks and will keep all info within a log as if it were completely active. The logs can be found within the very same section of the Control Panel and they include information about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules that we employ on our machines are a mix between commercial ones from a security business and custom ones developed by our system administrators. Consequently, we provide increased security for your web apps as we can shield them from attacks even before security businesses release updates for new threats.

ModSecurity in VPS Servers

All VPS servers that are set up with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the web server, so there shall not be anything special that you'll need to do to protect your Internet sites. It will take you a click to stop ModSecurity if needed or to switch on its passive mode so that it records what happens without taking any measures to stop intrusions. You will be able to see the logs produced in active or passive mode through the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall used to handle it, and so on. We use a mix of commercial and custom rules so as to make certain that ModSecurity will stop as many threats as possible, therefore improving the security of your web programs as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia CP and you'll not have to do anything specific on your end to use it as it is enabled by default every time you include a new domain or subdomain on your web server. In case it disrupts any of your apps, you will be able to stop it via the respective part of Hepsia, or you can leave it operating in passive mode, so it shall detect attacks and will still maintain a log for them, but will not block them. You can look at the logs later to determine what you can do to enhance the safety of your sites since you'll find info such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules that we employ are commercial, therefore they're regularly updated by a security provider, but to be on the safe side, our staff also add custom rules every now and then in order to react to any new threats they have identified.