ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its overall performance and in case it identifies an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the website visitors than any web server does, so you shall manage to monitor what's happening with your websites much better than if you rely merely on standard logs. ModSecurity employs security rules based on which it stops attacks. For example, it identifies if somebody is trying to log in to the admin area of a given script several times or if a request is sent to execute a file with a particular command. In these situations these attempts set off the corresponding rules and the software hinders the attempts right away, after that records comprehensive details about them in its logs. ModSecurity is amongst the very best software firewalls available and it could easily protect your web apps against many threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Cloud Website Hosting

ModSecurity comes standard with all cloud website hosting packages that we offer and it'll be switched on automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could switch on and deactivate it with only a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it will not do anything to prevent them. The log for any of your websites shall include detailed information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and incorporate both commercial ones which we get from a third-party security firm and custom ones our system administrators add in case that they detect a new kind of attacks. In this way, the sites that you host here will be far more secure with no action needed on your end.

ModSecurity in Semi-dedicated Hosting

Any web app that you set up inside your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall comes with all our hosting plans and is turned on by default for any domain and subdomain you include or create through your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated area inside Hepsia where not only could you activate or deactivate it entirely, but you may also enable a passive mode, so the firewall won't block anything, but it shall still maintain a record of possible attacks. This normally requires just a click and you shall be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, and so on. The firewall employs 2 sets of rules on our machines - a commercial one that we get from a third-party web security provider and a custom one which our administrators update personally as to respond to newly discovered risks at the earliest opportunity.

ModSecurity in VPS Web Hosting

All virtual private servers which are offered with the Hepsia Control Panel come with ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the server, so there will not be anything special that you shall have to do to protect your websites. It shall take you simply a click to stop ModSecurity if needed or to turn on its passive mode so that it records what happens without taking any measures to stop intrusions. You shall be able to look at the logs produced in passive or active mode from the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall employed to handle it, etc. We use a mixture of commercial and custom rules in order to make certain that ModSecurity shall prevent as many threats as possible, consequently increasing the security of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

ModSecurity is included with all dedicated servers which are integrated with our Hepsia Control Panel and you will not need to do anything specific on your end to employ it because it's turned on by default each time you include a new domain or subdomain on your server. If it interferes with any of your apps, you'll be able to stop it via the respective area of Hepsia, or you could leave it operating in passive mode, so it'll detect attacks and shall still maintain a log for them, but shall not stop them. You'll be able to look at the logs later to determine what you can do to boost the security of your sites as you shall find details such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules which we employ are commercial, hence they are frequently updated by a security company, but to be on the safe side, our admins also include custom rules from time to time in order to deal with any new threats they have identified.