ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and in case it detects an intrusion attempt, it prevents it. The firewall also keeps a more comprehensive log for the website visitors than any web server does, so you will manage to keep track of what is happening with your websites better than if you rely only on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it identifies if someone is attempting to log in to the administration area of a given script several times or if a request is sent to execute a file with a certain command. In such situations these attempts set off the corresponding rules and the firewall software hinders the attempts immediately, then records comprehensive details about them in its logs. ModSecurity is amongst the best software firewalls on the market and it can easily protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity comes by default with all shared hosting packages which we offer and it'll be switched on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and disable it with simply a click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to stop them. The log for any of your websites shall include detailed info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are frequently updated and comprise of both commercial ones which we get from a third-party security company and custom ones our system admins add in case that they detect a new kind of attacks. That way, the sites that you host here will be far more secure without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
Any web application which you install inside your new semi-dedicated hosting account will be protected by ModSecurity as the firewall comes with all our hosting packages and is turned on by default for any domain and subdomain that you add or create using your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area in Hepsia where not simply can you activate or deactivate it completely, but you could also enable a passive mode, so the firewall will not block anything, but it will still maintain a record of possible attacks. This requires only a click and you'll be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, and so forth. The firewall uses 2 sets of rules on our machines - a commercial one that we get from a third-party web security provider and a custom one that our admins update manually as to respond to newly discovered risks as soon as possible.
ModSecurity in VPS
Security is essential to us, so we set up ModSecurity on all virtual private servers which are provided with the Hepsia Control Panel as a standard. The firewall can be managed via a dedicated section within Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you will not need to do anything by hand. You'll also be able to deactivate it or activate the so-called detection mode, so it'll keep a log of possible attacks which you can later examine, but shall not prevent them. The logs in both passive and active modes contain information about the type of the attack and how it was stopped, what IP address it came from and other important information that could help you to tighten the security of your websites by updating them or blocking IPs, for example. In addition to the commercial rules which we get for ModSecurity from a third-party security firm, we also employ our own rules because occasionally we detect specific attacks which aren't yet present in the commercial package. That way, we can boost the protection of your Virtual private server instantly rather than waiting for a certified update.
ModSecurity in Dedicated Hosting
ModSecurity is included with all dedicated servers that are integrated with our Hepsia Control Panel and you won't need to do anything specific on your end to use it since it is enabled by default each time you add a new domain or subdomain on your server. In the event that it disrupts any of your applications, you will be able to stop it via the respective area of Hepsia, or you can leave it working in passive mode, so it will detect attacks and will still maintain a log for them, but will not block them. You could analyze the logs later to learn what you can do to enhance the security of your websites since you will find info such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity reacted, etc. The rules which we employ are commercial, hence they are constantly updated by a security firm, but to be on the safe side, our admins also include custom rules every now and then as to respond to any new threats they have found.
    • Our ID: 53825