ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its operation and in case it discovers an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the traffic than any server does, so you shall be able to keep track of what is going on with your websites much better than if you rely only on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it detects if anyone is trying to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a particular command. In these cases these attempts set off the corresponding rules and the software hinders the attempts right away, and then records comprehensive info about them within its logs. ModSecurity is one of the best software firewalls available and it could easily protect your web apps against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.

ModSecurity in Hosting

ModSecurity is available on all hosting machines, so if you opt to host your websites with our firm, they will be shielded from a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you will have to do on your end. You'll be able to stop ModSecurity for any Internet site if needed, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You will be able to view detailed logs from your Hepsia Control Panel including the IP where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the safety of our clients' Internet sites very seriously, we employ a set of commercial rules which we take from one of the top companies that maintain this type of rules. Our administrators also include custom rules to ensure that your sites shall be resistant to as many threats as possible.

ModSecurity in Semi-dedicated Hosting

Any web application you set up inside your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is provided with all our hosting solutions and is activated by default for any domain and subdomain you include or create through your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated section in Hepsia where not only could you activate or deactivate it entirely, but you can also switch on a passive mode, so the firewall shall not stop anything, but it will still keep an archive of possible attacks. This normally requires simply a mouse click and you will be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, etc. The firewall employs 2 groups of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one which our admins update manually in order to respond to newly discovered threats as fast as possible.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any program that you upload or install will be secured from the very beginning and you won't have to bother about common attacks or vulnerabilities. An individual section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to stop them. What you will find in the logs shall help you to secure your Internet sites better - the IP an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you can see whether a site needs an update, if you ought to block IPs from accessing your hosting server, and so on. Besides the third-party commercial security rules for ModSecurity we use, our admins add custom ones as well when they come across a new threat which is not yet included in the commercial bundle.