ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and in case it detects an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the traffic than any web server does, so you shall manage to keep an eye on what's happening with your Internet sites much better than if you rely merely on standard logs. ModSecurity employs security rules based on which it stops attacks. For instance, it detects whether someone is attempting to log in to the admin area of a given script a number of times or if a request is sent to execute a file with a specific command. In such circumstances these attempts set off the corresponding rules and the firewall program blocks the attempts right away, after that records detailed information about them within its logs. ModSecurity is one of the most effective software firewalls on the market and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Cloud Web Hosting

ModSecurity is provided with all cloud web hosting servers, so if you choose to host your Internet sites with our firm, they will be resistant to a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you will need to do on your end. You will be able to stop ModSecurity for any site if needed, or to activate a detection mode, so all activity will be recorded, but the firewall won't take any real action. You will be able to view specific logs using your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the protection of our customers' websites very seriously, we use a selection of commercial rules which we take from one of the best firms that maintain this kind of rules. Our administrators also add custom rules to make certain that your websites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

Any web app which you set up within your new semi-dedicated server account will be protected by ModSecurity as the firewall comes with all our hosting solutions and is activated by default for any domain and subdomain that you include or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity via a dedicated section inside Hepsia where not only could you activate or deactivate it completely, but you can also activate a passive mode, so the firewall won't block anything, but it will still keep a record of potential attacks. This requires only a click and you shall be able to look at the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was addressed, and so on. The firewall employs 2 groups of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one which our admins update manually in order to respond to recently discovered threats at the earliest opportunity.

ModSecurity in Dedicated Servers

When you decide to host your websites on a dedicated server with the Hepsia CP, your web applications will be secured straight away since ModSecurity is supplied with all Hepsia-based packages. You shall be able to manage the firewall effortlessly and if needed, you will be able to turn it off or enable its passive mode when it'll only maintain a log of what's happening without taking any action to stop possible attacks. The logs which you can find in the exact same section of the CP are very detailed and contain info about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, and so on. This info will allow you to take measures and increase the security of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our admins include whenever they detect attacks which have not yet been included within the commercial pack.