ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order Now

ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its functionality and when it discovers an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the site visitors than any web server does, so you will be able to keep track of what's happening with your Internet sites much better than if you rely only on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it recognizes whether anyone is trying to log in to the administration area of a particular script multiple times or if a request is sent to execute a file with a specific command. In these instances these attempts trigger the corresponding rules and the firewall blocks the attempts immediately, and then records detailed info about them within its logs. ModSecurity is among the most effective software firewalls on the market and it could easily protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins often.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting plans, so your web apps shall be shielded from harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you will be able to stop it through the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you'll find within Hepsia are incredibly detailed and feature info about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, and so on. We use a group of commercial rules that are regularly updated, but sometimes our administrators include custom rules as well in order to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server plans and if you opt to host your Internet sites with us, there shall not be anything special you'll need to do since the firewall is switched on by default for all domains and subdomains which you include through your hosting CP. If required, you'll be able to disable ModSecurity for a particular website or turn on the so-called detection mode in which case the firewall will still function and record info, but won't do anything to stop potential attacks against your Internet sites. Detailed logs shall be available in your CP and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks came from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones that our administrators occasionally include to respond to newly identified risks in a timely manner.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting Control Panel, so your web apps shall be protected from the second your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if required, you could disable it with a click of your mouse through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it'll maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs are available in the same section and provide details about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For maximum security, we use not just commercial rules from a business operating in the field of web security, but also custom ones that our administrators include personally so as to react to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

When you opt to host your sites on a dedicated server with the Hepsia CP, your web apps shall be protected straight away since ModSecurity is provided with all Hepsia-based solutions. You'll be able to regulate the firewall without difficulty and if necessary, you'll be able to turn it off or switch on its passive mode when it will only maintain a log of what is taking place without taking any action to stop possible attacks. The logs that you can find inside the exact same section of the CP are incredibly detailed and include info about the attacker IP address, what website and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etc. This information shall allow you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our administrators include whenever they recognize attacks which haven't yet been included in the commercial pack.