ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and in case it discovers an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the site visitors than any server does, so you will manage to keep an eye on what is going on with your websites a lot better than if you rely only on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it identifies whether someone is trying to log in to the administrator area of a particular script several times or if a request is sent to execute a file with a particular command. In these instances these attempts set off the corresponding rules and the software blocks the attempts right away, then records in-depth information about them inside its logs. ModSecurity is amongst the most effective software firewalls out there and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting packages which we offer and it shall be switched on automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you can switch on and deactivate it with simply a click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to prevent them. The log for each of your sites will include comprehensive information including the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules we use are regularly updated and comprise of both commercial ones which we get from a third-party security company and custom ones which our system admins add in case that they detect a new type of attacks. In this way, the sites that you host here shall be far more protected with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

Any web program which you install inside your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall comes with all our hosting packages and is switched on by default for any domain and subdomain which you include or create through your Hepsia hosting Control Panel. You will be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it fully, but you may also activate a passive mode, so the firewall shall not stop anything, but it'll still keep a record of potential attacks. This normally requires just a mouse click and you'll be able to look at the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was dealt with, and so forth. The firewall employs two groups of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one that our admins update manually as to respond to recently discovered threats immediately.

ModSecurity in Dedicated Hosting

If you opt to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web programs will be secured immediately as ModSecurity is supplied with all Hepsia-based solutions. You shall be able to regulate the firewall easily and if needed, you shall be able to turn it off or enable its passive mode when it will only maintain a log of what is happening without taking any action to stop potential attacks. The logs that you will find in the same section of the Control Panel are quite detailed and contain info about the attacker IP, what website and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etc. This data will allow you to take measures and increase the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our administrators add when they identify attacks which have not yet been included inside the commercial pack.