ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and in case it identifies an intrusion attempt, it blocks it. The firewall furthermore keeps a more thorough log for the site visitors than any server does, so you will manage to keep track of what's going on with your websites better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it stops attacks. For example, it identifies if anyone is attempting to log in to the admin area of a certain script a number of times or if a request is sent to execute a file with a particular command. In these instances these attempts set off the corresponding rules and the firewall software hinders the attempts immediately, and then records detailed info about them in its logs. ModSecurity is among the very best software firewalls on the market and it can protect your web apps against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Cloud Web Hosting

ModSecurity can be found with each and every cloud web hosting package which we offer and it is switched on by default for any domain or subdomain that you add through your Hepsia Control Panel. In the event that it disrupts any of your programs or you'd like to disable it for any reason, you shall be able to achieve that through the ModSecurity area of Hepsia with simply a click. You could also use a passive mode, so the firewall will discover potential attacks and keep a log, but won't take any action. You can view extensive logs in the very same section, including the IP where the attack originated from, exactly what the attacker aimed to do and at what time, what ModSecurity did, and so on. For max safety of our clients we use a group of commercial firewall rules combined with custom ones which are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

We have integrated ModSecurity by default in all semi-dedicated server plans, so your web apps will be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will allow you to enable or disable the firewall for any Internet site with a click. You will also be able to activate a passive detection mode in which ModSecurity will maintain a log of possible attacks without actually stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack generated, where it originated from, etc. The list of rules that we use is constantly updated in order to match any new threats which might appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones which our administrators add in case they find a threat that's not present in the commercial list yet.

ModSecurity in Dedicated Servers

When you choose to host your websites on a dedicated server with the Hepsia CP, your web applications will be protected immediately as ModSecurity is supplied with all Hepsia-based plans. You shall be able to manage the firewall without difficulty and if necessary, you shall be able to turn it off or activate its passive mode when it'll only keep a log of what is going on without taking any action to prevent possible attacks. The logs that you can find in the same section of the Control Panel are really detailed and feature info about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, etc. This info will allow you to take measures and improve the protection of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins include every time they recognize attacks that haven't yet been included within the commercial pack.