ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its performance and when it detects an intrusion attempt, it blocks it. The firewall furthermore keeps a more thorough log for the traffic than any server does, so you will manage to keep an eye on what's happening with your Internet sites much better than if you rely simply on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it recognizes whether someone is trying to log in to the administrator area of a specific script several times or if a request is sent to execute a file with a particular command. In such instances these attempts trigger the corresponding rules and the software blocks the attempts in real time, and then records in-depth info about them in its logs. ModSecurity is one of the most effective software firewalls out there and it can easily protect your web apps against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Shared Web Hosting

ModSecurity comes by default with all shared web hosting solutions which we offer and it'll be activated automatically for any domain or subdomain that you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to activate and deactivate it with simply a click or set it to detection mode, so it shall maintain a log of all attacks, but it shall not do anything to prevent them. The log for each of your Internet sites shall contain elaborate info such as the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules which we use are constantly updated and include both commercial ones which we get from a third-party security company and custom ones our system administrators include in case that they detect a new kind of attacks. In this way, the sites that you host here will be far more secure with no action required on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you decide to host your sites with our company, there shall not be anything special you'll need to do since the firewall is activated by default for all domains and subdomains you include through your hosting Control Panel. If required, you can disable ModSecurity for a particular site or activate the so-called detection mode in which case the firewall shall still function and record info, but shall not do anything to stop possible attacks against your Internet sites. Comprehensive logs shall be available within your CP and you shall be able to see what type of attacks took place, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks originated from, and so on. We use 2 types of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones which our administrators sometimes include to respond to newly identified threats on time.

ModSecurity in Dedicated Servers

If you decide to host your Internet sites on a dedicated server with the Hepsia CP, your web programs shall be secured right away as ModSecurity is supplied with all Hepsia-based solutions. You will be able to control the firewall with ease and if necessary, you'll be able to turn it off or activate its passive mode when it will only maintain a log of what is occurring without taking any action to prevent potential attacks. The logs which you will find within the same section of the Control Panel are quite detailed and include details about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so forth. This information will permit you to take measures and boost the protection of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our administrators add every time they detect attacks which haven't yet been included within the commercial pack.