ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and if it discovers an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the website visitors than any server does, so you will be able to keep track of what is happening with your websites better than if you rely merely on standard logs. ModSecurity employs security rules based on which it stops attacks. For example, it detects if anyone is trying to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a certain command. In such situations these attempts set off the corresponding rules and the firewall blocks the attempts immediately, after that records detailed information about them within its logs. ModSecurity is among the best software firewalls available and it can protect your web apps against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.

ModSecurity in Web Hosting

ModSecurity is provided with all web hosting web servers, so when you decide to host your sites with our business, they'll be protected against a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you'll have to do on your end. You'll be able to stop ModSecurity for any website if required, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs through your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the security of our customers' websites seriously, we employ a set of commercial rules which we take from one of the best firms that maintain such rules. Our administrators also add custom rules to make sure that your sites will be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

We've included ModSecurity as a standard in all semi-dedicated hosting packages, so your web applications will be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts shall permit you to enable or disable the firewall for any Internet site with a mouse click. You will also be able to activate a passive detection mode with which ModSecurity will maintain a log of potential attacks without actually preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response that attack triggered, where it originated from, and so on. The list of rules we use is frequently updated in order to match any new risks which may appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones that our admins add in the event that they discover a threat that's not present inside the commercial list yet.

ModSecurity in VPS Web Hosting

All virtual private servers that are provided with the Hepsia CP feature ModSecurity. The firewall is installed and switched on by default for all domains that are hosted on the web server, so there won't be anything special which you will have to do to protect your websites. It will take you only a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what occurs without taking any measures to prevent intrusions. You will be able to see the logs created in active or passive mode via the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall employed to take care of it, and so on. We use a mix of commercial and custom rules in order to make sure that ModSecurity shall prevent as many risks as possible, hence enhancing the protection of your web apps as much as possible.

ModSecurity in Dedicated Servers Hosting

When you opt to host your sites on a dedicated server with the Hepsia Control Panel, your web apps will be protected immediately because ModSecurity is available with all Hepsia-based solutions. You shall be able to regulate the firewall with ease and if required, you shall be able to turn it off or enable its passive mode when it shall only keep a log of what's taking place without taking any action to prevent possible attacks. The logs which you'll find inside the same section of the Control Panel are quite detailed and feature information about the attacker IP, what website and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so on. This data will permit you to take measures and enhance the security of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins add when they detect attacks which haven't yet been included inside the commercial pack.