ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and when it identifies an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the website visitors than any web server does, so you shall be able to keep track of what is going on with your sites much better than if you rely simply on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it detects whether anyone is trying to log in to the admin area of a particular script multiple times or if a request is sent to execute a file with a certain command. In these cases these attempts trigger the corresponding rules and the firewall blocks the attempts instantly, and then records detailed information about them within its logs. ModSecurity is one of the best software firewalls available and it could easily protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Web Hosting

ModSecurity can be found with each cloud web hosting plan which we provide and it is turned on by default for any domain or subdomain that you add via your Hepsia CP. If it disrupts any of your programs or you would like to disable it for whatever reason, you shall be able to do that through the ModSecurity area of Hepsia with merely a mouse click. You may also use a passive mode, so the firewall will identify potential attacks and keep a log, but will not take any action. You can view extensive logs in the same section, including the IP where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so on. For max protection of our customers we use a collection of commercial firewall rules mixed with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you choose to host your sites with our company, there won't be anything special you'll need to do since the firewall is switched on by default for all domains and subdomains you include through your hosting Control Panel. If necessary, you can disable ModSecurity for a given website or enable the so-called detection mode in which case the firewall shall still operate and record info, but won't do anything to prevent possible attacks against your sites. Comprehensive logs shall be accessible inside your Control Panel and you shall be able to see what sort of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, etcetera. We use 2 kinds of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones which our admins often include to respond to newly discovered risks in a timely manner.

ModSecurity in Dedicated Servers

If you decide to host your websites on a dedicated server with the Hepsia CP, your web programs shall be protected right away since ModSecurity is supplied with all Hepsia-based packages. You will be able to manage the firewall effortlessly and if required, you shall be able to turn it off or activate its passive mode when it shall only keep a log of what's going on without taking any action to stop potential attacks. The logs which you will find within the very same section of the Control Panel are extremely detailed and feature details about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, and so forth. This info will permit you to take measures and boost the security of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our staff include whenever they identify attacks which haven't yet been included within the commercial pack.