ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its operation and if it identifies an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the traffic than any server does, so you shall be able to keep track of what's going on with your sites much better than if you rely only on standard logs. ModSecurity uses security rules based on which it prevents attacks. For example, it detects whether somebody is attempting to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a certain command. In such situations these attempts set off the corresponding rules and the firewall software blocks the attempts immediately, after that records in-depth info about them in its logs. ModSecurity is among the very best software firewalls out there and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Shared Hosting

ModSecurity is offered with each shared hosting plan that we offer and it is switched on by default for any domain or subdomain that you add through your Hepsia CP. If it disrupts any of your apps or you'd like to disable it for whatever reason, you will be able to do this through the ModSecurity area of Hepsia with only a mouse click. You could also activate a passive mode, so the firewall will identify potential attacks and keep a log, but won't take any action. You could view comprehensive logs in the exact same section, including the IP where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, and so on. For optimum protection of our customers we use a set of commercial firewall rules mixed with custom ones which are added by our system admins.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages which we offer come with ModSecurity and since the firewall is enabled by default, any site you create under a domain or a subdomain shall be secured right from the start. A separate section in the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it'll enable you to stop and start the firewall for any Internet site or switch on a detection mode. With the last option, ModSecurity shall not take any action, but it'll still detect possible attacks and will keep all info inside a log as if it were 100% active. The logs could be found in the exact same section of the CP and they feature details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules which we employ on our servers are a mix of commercial ones from a security business and custom ones created by our system administrators. Therefore, we offer higher security for your web programs as we can protect them from attacks even before security companies release updates for completely new threats.

ModSecurity in Dedicated Servers

All our dedicated servers that are installed with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or install will be properly secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. A separate section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you shall see in the logs can easily allow you to to secure your sites better - the IP address an attack came from, what site was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this info, you could see whether a site needs an update, whether you ought to block IPs from accessing your server, etcetera. On top of the third-party commercial security rules for ModSecurity we use, our administrators add custom ones too whenever they discover a new threat which is not yet included in the commercial bundle.