ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and when it discovers an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the site visitors than any server does, so you will manage to keep an eye on what's going on with your Internet sites much better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it recognizes whether anyone is trying to log in to the administrator area of a given script multiple times or if a request is sent to execute a file with a specific command. In such circumstances these attempts trigger the corresponding rules and the firewall blocks the attempts immediately, then records detailed details about them in its logs. ModSecurity is among the very best software firewalls on the market and it can easily protect your web applications against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Shared Hosting

ModSecurity is available on all shared hosting machines, so when you choose to host your Internet sites with our firm, they'll be protected against a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you shall need to do on your end. You'll be able to stop ModSecurity for any site if needed, or to activate a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You'll be able to view detailed logs through your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity dealt with the threat. As we take the security of our customers' websites very seriously, we use a selection of commercial rules which we take from one of the leading firms that maintain this type of rules. Our admins also include custom rules to ensure that your sites will be shielded from as many risks as possible.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity as a standard within all semi-dedicated server plans, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will allow you to activate or disable the firewall for any website with a mouse click. You'll also have the ability to turn on a passive detection mode through which ModSecurity shall keep a log of potential attacks without actually stopping them. The thorough logs include the nature of the attack and what ModSecurity response that attack caused, where it came from, etc. The list of rules which we employ is regularly updated in order to match any new threats which could appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones which our admins include if they discover a threat that's not present inside the commercial list yet.

ModSecurity in Dedicated Servers

If you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured right from the start as ModSecurity is available with all Hepsia-based packages. You will be able to control the firewall without difficulty and if necessary, you shall be able to turn it off or switch on its passive mode when it'll only keep a log of what is happening without taking any action to stop potential attacks. The logs which you'll find in the exact same section of the Control Panel are incredibly detailed and contain information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, and so on. This information shall allow you to take measures and boost the protection of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our administrators include when they detect attacks that haven't yet been included inside the commercial pack.