ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and if it identifies an intrusion attempt, it blocks it. The firewall furthermore keeps a more thorough log for the website visitors than any web server does, so you shall manage to keep an eye on what's happening with your sites a lot better than if you rely simply on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it identifies if anyone is trying to log in to the administration area of a particular script a number of times or if a request is sent to execute a file with a particular command. In such circumstances these attempts set off the corresponding rules and the firewall hinders the attempts right away, then records in-depth details about them within its logs. ModSecurity is amongst the best software firewalls on the market and it could easily protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Shared Hosting

ModSecurity comes standard with all shared hosting packages that we offer and it will be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has three different modes, so you can activate and deactivate it with simply a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it will not do anything to stop them. The log for any of your websites will include in-depth info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are regularly updated and comprise of both commercial ones which we get from a third-party security firm and custom ones that our system administrators include in the event that they detect a new kind of attacks. This way, the websites you host here will be far more secure without any action required on your end.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity by default inside all semi-dedicated hosting packages, so your web applications shall be protected whenever you install them under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts shall allow you to switch on or disable the firewall for any Internet site with a mouse click. You shall also be able to switch on a passive detection mode with which ModSecurity will maintain a log of potential attacks without actually preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response that attack activated, where it originated from, etcetera. The list of rules which we use is regularly updated as to match any new threats that may appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our admins include if they find a threat which is not present in the commercial list yet.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any app that you upload or install shall be properly secured from the very beginning and you'll not need to stress about common attacks or vulnerabilities. An independent section inside Hepsia will enable you to start or stop the firewall for every domain or subdomain, or activate a detection mode so that it records info about intrusions, but does not take actions to stop them. What you will discover in the logs shall help you to secure your sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you could see if an Internet site needs an update, whether you need to block IPs from accessing your web server, and so forth. On top of the third-party commercial security rules for ModSecurity which we use, our administrators add custom ones as well if they come across a new threat that is not yet included in the commercial bundle.