ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and in case it detects an intrusion attempt, it prevents it. The firewall also maintains a more detailed log for the site visitors than any server does, so you will be able to monitor what is happening with your Internet sites a lot better than if you rely simply on standard logs. ModSecurity works with security rules based on which it stops attacks. For instance, it identifies if someone is trying to log in to the admin area of a given script a number of times or if a request is sent to execute a file with a certain command. In such circumstances these attempts set off the corresponding rules and the firewall blocks the attempts immediately, then records detailed details about them inside its logs. ModSecurity is one of the most effective software firewalls out there and it could easily protect your web applications against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Web Hosting

We provide ModSecurity with all shared web hosting solutions, so your web apps will be resistant to destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective section of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you'll find in Hepsia are extremely detailed and feature info about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, etc. We employ a range of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well in order to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

Any web application which you install inside your new semi-dedicated server account shall be protected by ModSecurity because the firewall is provided with all our hosting solutions and is switched on by default for any domain and subdomain which you add or create via your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated area within Hepsia where not simply can you activate or deactivate it completely, but you can also enable a passive mode, so the firewall won't stop anything, but it shall still maintain an archive of potential attacks. This normally requires just a click and you'll be able to look at the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall employs two groups of rules on our web servers - a commercial one that we get from a third-party web security company and a custom one that our administrators update manually as to respond to newly discovered risks as fast as possible.

ModSecurity in Dedicated Servers

All of our dedicated servers which are set up with the Hepsia hosting CP come with ModSecurity, so any app that you upload or install will be protected from the very beginning and you'll not need to concern yourself with common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you shall find in the logs can enable you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, and so on. With this info, you'll be able to see whether an Internet site needs an update, whether you ought to block IPs from accessing your hosting server, and so forth. Besides the third-party commercial security rules for ModSecurity we use, our admins include custom ones too whenever they discover a new threat that is not yet in the commercial bundle.