ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its functionality and when it detects an intrusion attempt, it blocks it. The firewall also maintains a more thorough log for the site visitors than any web server does, so you will be able to monitor what's going on with your sites much better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it identifies if anyone is trying to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a certain command. In these cases these attempts trigger the corresponding rules and the firewall hinders the attempts immediately, after that records comprehensive information about them inside its logs. ModSecurity is one of the most effective software firewalls available and it could easily protect your web applications against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Cloud Hosting

We provide ModSecurity with all cloud hosting plans, so your Internet apps will be shielded from harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you'd like, you shall be able to stop it through the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall find in Hepsia are quite detailed and include info about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, and so on. We use a range of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well in order to efficiently protect the websites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer feature ModSecurity and given that the firewall is switched on by default, any website that you create under a domain or a subdomain shall be secured straight away. An individual section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to start and stop the firewall for any site or activate a detection mode. With the latter, ModSecurity will not take any action, but it shall still detect possible attacks and shall keep all information within a log as if it were completely active. The logs could be found within the same section of the CP and they feature specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so on. The security rules which we use on our servers are a mix of commercial ones from a security business and custom ones made by our system administrators. For that reason, we offer increased security for your web programs as we can defend them from attacks even before security corporations release updates for new threats.

ModSecurity in Dedicated Web Hosting

ModSecurity is available by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain which you create on the server. Just in case that a web app doesn't function adequately, you could either disable the firewall or set it to operate in passive mode. The second means that ModSecurity will keep a log of any possible attack which might occur, but won't take any action to prevent it. The logs created in passive or active mode shall offer you more details about the exact file which was attacked, the type of the attack and the IP it originated from, etcetera. This information shall permit you to decide what steps you can take to improve the security of your sites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we employ are updated constantly with a commercial bundle from a third-party security company we work with, but occasionally our staff include their own rules too if they identify a new potential threat.