ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and if it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the traffic than any server does, so you shall manage to monitor what is going on with your Internet sites a lot better than if you rely simply on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes if anyone is attempting to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a certain command. In such cases these attempts set off the corresponding rules and the firewall program hinders the attempts immediately, then records in-depth info about them inside its logs. ModSecurity is amongst the very best software firewalls out there and it can easily protect your web apps against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins often.

ModSecurity in Web Hosting

We offer ModSecurity with all web hosting solutions, so your web applications shall be shielded from destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you'll be able to stop it using the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will discover in Hepsia are quite detailed and offer info about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, etc. We employ a range of commercial rules which are regularly updated, but sometimes our administrators include custom rules as well in order to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you choose to host your sites with us, there shall not be anything special you'll have to do as the firewall is turned on by default for all domains and subdomains that you include via your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a given Internet site or turn on the so-called detection mode in which case the firewall shall still function and record information, but won't do anything to prevent possible attacks on your sites. Detailed logs will be readily available in your Control Panel and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks came from, etc. We employ 2 kinds of rules on our servers - commercial ones from a company that operates in the field of web security, and custom made ones which our admins occasionally include to respond to newly identified risks on time.

ModSecurity in Dedicated Servers Hosting

ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it since it is switched on by default each time you include a new domain or subdomain on your server. In the event that it disrupts any of your programs, you'll be able to stop it via the respective area of Hepsia, or you can leave it operating in passive mode, so it'll identify attacks and shall still maintain a log for them, but will not prevent them. You could analyze the logs later to determine what you can do to enhance the security of your sites since you will find information such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity responded, etcetera. The rules we employ are commercial, thus they're regularly updated by a security company, but to be on the safe side, our admins also add custom rules occasionally in order to respond to any new threats they have identified.