ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and when it discovers an intrusion attempt, it blocks it. The firewall also maintains a more detailed log for the site visitors than any server does, so you'll manage to keep an eye on what's going on with your sites much better than if you rely only on standard logs. ModSecurity works with security rules based on which it prevents attacks. For example, it detects whether anyone is trying to log in to the administration area of a particular script multiple times or if a request is sent to execute a file with a particular command. In these instances these attempts set off the corresponding rules and the firewall hinders the attempts instantly, after that records comprehensive info about them in its logs. ModSecurity is amongst the very best software firewalls out there and it can protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Cloud Website Hosting

ModSecurity can be found with every single cloud website hosting solution that we offer and it is activated by default for every domain or subdomain which you include through your Hepsia Control Panel. In the event that it interferes with any of your applications or you would like to disable it for any reason, you shall be able to do that through the ModSecurity area of Hepsia with only a mouse click. You could also enable a passive mode, so the firewall will identify possible attacks and keep a log, but shall not take any action. You can view detailed logs in the exact same section, including the IP where the attack came from, exactly what the attacker tried to do and at what time, what ModSecurity did, etcetera. For maximum safety of our clients we use a collection of commercial firewall rules combined with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

Any web program you set up inside your new semi-dedicated server account shall be protected by ModSecurity as the firewall comes with all our hosting plans and is switched on by default for any domain and subdomain you include or create through your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated area within Hepsia where not only can you activate or deactivate it completely, but you can also activate a passive mode, so the firewall shall not stop anything, but it will still maintain an archive of possible attacks. This takes just a mouse click and you will be able to see the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, etcetera. The firewall uses 2 sets of rules on our servers - a commercial one which we get from a third-party web security company and a custom one that our admins update personally as to respond to recently discovered risks immediately.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any program you upload or install will be protected from the very beginning and you will not need to bother about common attacks or vulnerabilities. An individual section inside Hepsia will allow you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records information about intrusions, but doesn't take actions to prevent them. What you will discover in the logs can enable you to to secure your sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this data, you could see if a site needs an update, whether you should block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity which we use, our administrators add custom ones too if they come across a new threat which is not yet a part of the commercial bundle.