ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Join us

ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its functionality and if it detects an intrusion attempt, it prevents it. The firewall also keeps a more detailed log for the website visitors than any server does, so you shall be able to keep track of what is going on with your sites better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it recognizes whether somebody is attempting to log in to the administrator area of a given script several times or if a request is sent to execute a file with a specific command. In these cases these attempts set off the corresponding rules and the firewall hinders the attempts instantly, after that records detailed information about them inside its logs. ModSecurity is one of the best software firewalls available and it can protect your web apps against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Website Hosting

ModSecurity comes by default with all cloud website hosting plans which we provide and it'll be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and deactivate it with simply a click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for each of your Internet sites will feature detailed information such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are constantly updated and comprise of both commercial ones that we get from a third-party security business and custom ones which our system admins include in the event that they detect a new sort of attacks. This way, the sites that you host here shall be a lot more protected with no action required on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you decide to host your websites with our company, there won't be anything special you'll have to do as the firewall is switched on by default for all domains and subdomains that you include using your hosting Control Panel. If needed, you could disable ModSecurity for a given site or turn on the so-called detection mode in which case the firewall shall still work and record data, but won't do anything to stop potential attacks against your websites. Detailed logs shall be available within your CP and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, etc. We employ two kinds of rules on our servers - commercial ones from a firm that operates in the field of web security, and customized ones which our administrators sometimes add to respond to newly identified risks on time.

ModSecurity in VPS Servers

All VPS servers that are provided with the Hepsia Control Panel come with ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the machine, so there won't be anything special that you shall have to do to protect your websites. It shall take you only a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what goes on without taking any steps to stop intrusions. You'll be able to see the logs created in active or passive mode through the corresponding section of Hepsia and learn more about the type of the attack, where it came from, what rule the firewall used to take care of it, etc. We use a mix of commercial and custom rules in order to make certain that ModSecurity shall stop as many threats as possible, thus increasing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers

All our dedicated servers that are installed with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or install will be secured from the very beginning and you will not need to worry about common attacks or vulnerabilities. A separate section inside Hepsia will enable you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you'll discover in the logs can allow you to to secure your websites better - the IP address an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you'll be able to see if an Internet site needs an update, whether you ought to block IPs from accessing your hosting server, and so forth. Besides the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones too when they discover a new threat which is not yet in the commercial bundle.