ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and if it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more detailed log for the site visitors than any server does, so you will be able to monitor what's going on with your Internet sites a lot better than if you rely only on standard logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it identifies whether anyone is attempting to log in to the administration area of a particular script several times or if a request is sent to execute a file with a specific command. In these situations these attempts trigger the corresponding rules and the firewall hinders the attempts in real time, then records detailed details about them within its logs. ModSecurity is one of the very best software firewalls available and it can easily protect your web applications against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting packages, so your Internet apps will be shielded from malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you'll be able to stop it through the respective part of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will discover in Hepsia are extremely detailed and include data about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, etc. We use a group of commercial rules that are constantly updated, but sometimes our administrators add custom rules as well so as to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions which we offer come with ModSecurity and given that the firewall is turned on by default, any site which you create under a domain or a subdomain will be protected right away. An individual section in the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to stop and start the firewall for any Internet site or switch on a detection mode. With the last mentioned, ModSecurity shall not take any action, but it will still recognize possible attacks and will keep all information in a log as if it were fully active. The logs can be found inside the exact same section of the Control Panel and they include information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules which we employ on our servers are a mix of commercial ones from a security company and custom ones made by our system admins. Consequently, we offer greater security for your web applications as we can protect them from attacks before security firms release updates for new threats.

ModSecurity in VPS Hosting

ModSecurity is provided with all Hepsia-based virtual private servers which we offer and it'll be switched on automatically for every new domain or subdomain that you add on the hosting server. In this way, any web application which you install will be secured immediately without doing anything manually on your end. The firewall could be managed from the section of the CP which bears the same name. This is the area whereyou'll be able to switch off ModSecurity or activate its passive mode, so it will not take any action towards threats, but will still keep a detailed log. The recorded information is available inside the same section as well and you will be able to see what IPs any attacks originated from to enable you to stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules we use on our servers are a combination between commercial ones that we get from a security company and custom ones which are added by our staff to maximize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Web Hosting

All our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program you upload or install will be properly secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. A separate section inside Hepsia will allow you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you'll find in the logs can easily help you to secure your Internet sites better - the IP address an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this info, you'll be able to see if a site needs an update, whether you should block IPs from accessing your hosting server, and so forth. On top of the third-party commercial security rules for ModSecurity which we use, our admins include custom ones too whenever they discover a new threat that's not yet a part of the commercial bundle.