ModSecurity

: Glossary; Disk Space; Hepsia Control Panel; Hosted Domain Names; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Get Started

ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its functionality and when it detects an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the website visitors than any web server does, so you shall be able to keep track of what's going on with your websites much better than if you rely merely on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it detects if anyone is attempting to log in to the admin area of a particular script multiple times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the firewall blocks the attempts instantly, and then records comprehensive details about them in its logs. ModSecurity is amongst the most effective software firewalls on the market and it can protect your web apps against many threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

ModSecurity comes standard with all shared hosting plans which we supply and it shall be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and deactivate it with a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to stop them. The log for any of your sites shall feature in-depth info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are constantly updated and incorporate both commercial ones which we get from a third-party security business and custom ones that our system admins add in the event that they detect a new kind of attacks. In this way, the websites which you host here will be a lot more protected without any action needed on your end.

ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity as a standard in all semi-dedicated hosting plans, so your web apps shall be protected the instant you set them up under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will allow you to activate or disable the firewall for any website with a click. You shall also be able to switch on a passive detection mode in which ModSecurity shall keep a log of possible attacks without actually preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response that attack triggered, where it came from, and so on. The list of rules that we use is constantly updated in order to match any new threats that may appear on the Internet and it comes with both commercial rules that we get from a security company and custom-written ones which our administrators add in the event that they discover a threat that is not present inside the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are set up with the Hepsia hosting Control Panel, so your web apps will be secured from the second your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you can deactivate it with a mouse click through the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall maintain an extensive log of any possible attacks without taking any action to prevent them. The logs can be found in the same section and offer information about the nature of the attack, what IP it originated from and what ModSecurity rule was activated to stop it. For maximum security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones that our administrators add personally in order to react to new risks that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers Hosting

ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you will not need to do anything specific on your end to employ it as it is activated by default each time you add a new domain or subdomain on your hosting server. If it disrupts any of your applications, you'll be able to stop it through the respective part of Hepsia, or you can leave it operating in passive mode, so it'll detect attacks and shall still maintain a log for them, but won't block them. You may analyze the logs later to find out what you can do to enhance the protection of your websites as you'll find details such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, and so on. The rules that we employ are commercial, thus they are constantly updated by a security company, but to be on the safe side, our administrators also include custom rules from time to time as to react to any new threats they have found.