ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and in case it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more thorough log for the site visitors than any server does, so you'll be able to keep track of what's happening with your websites better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it detects whether someone is attempting to log in to the admin area of a certain script multiple times or if a request is sent to execute a file with a certain command. In these circumstances these attempts trigger the corresponding rules and the firewall software hinders the attempts in real time, then records detailed information about them in its logs. ModSecurity is amongst the best software firewalls on the market and it can easily protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Web Hosting

We provide ModSecurity with all web hosting plans, so your web applications shall be shielded from destructive attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it via the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall find in Hepsia are very detailed and include information about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, etc. We use a set of commercial rules which are often updated, but sometimes our administrators add custom rules as well so as to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting plans that we offer come with ModSecurity and given that the firewall is switched on by default, any website you build under a domain or a subdomain will be secured right away. An independent section within the Hepsia CP which comes with the semi-dedicated accounts is devoted to ModSecurity and it will allow you to stop and start the firewall for any website or switch on a detection mode. With the last option, ModSecurity shall not take any action, but it'll still recognize possible attacks and shall keep all info within a log as if it were 100% active. The logs can be found in the very same section of the CP and they include specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules that we employ on our machines are a mix between commercial ones from a security firm and custom ones made by our system admins. As a result, we offer increased security for your web apps as we can shield them from attacks before security companies release updates for completely new threats.

ModSecurity in Dedicated Web Hosting

When you choose to host your sites on a dedicated server with the Hepsia CP, your web programs shall be protected straight away as ModSecurity is available with all Hepsia-based packages. You will be able to regulate the firewall effortlessly and if needed, you will be able to turn it off or switch on its passive mode when it'll only maintain a log of what's happening without taking any action to stop potential attacks. The logs which you can find inside the same section of the Control Panel are really detailed and include details about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This information shall permit you to take measures and boost the security of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our admins include whenever they identify attacks that have not yet been included inside the commercial pack.