ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and when it discovers an intrusion attempt, it blocks it. The firewall additionally keeps a more detailed log for the website visitors than any server does, so you shall manage to keep track of what's happening with your sites better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it stops attacks. For instance, it detects if somebody is trying to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a certain command. In such instances these attempts set off the corresponding rules and the firewall hinders the attempts immediately, and then records comprehensive information about them inside its logs. ModSecurity is amongst the very best software firewalls out there and it can easily protect your web applications against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Cloud Website Hosting

ModSecurity can be found with every cloud website hosting plan that we provide and it's switched on by default for any domain or subdomain that you include through your Hepsia Control Panel. In the event that it disrupts any of your programs or you'd like to disable it for whatever reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with merely a mouse click. You could also activate a passive mode, so the firewall will recognize possible attacks and keep a log, but won't take any action. You'll be able to see extensive logs in the exact same section, including the IP address where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, and so on. For max security of our customers we use a set of commercial firewall rules blended with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you choose to host your websites with us, there will not be anything special you'll need to do as the firewall is turned on by default for all domains and subdomains which you add via your hosting CP. If needed, you can disable ModSecurity for a particular website or turn on the so-called detection mode in which case the firewall shall still work and record data, but shall not do anything to stop potential attacks against your websites. In depth logs shall be accessible inside your Control Panel and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks came from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom made ones which our admins occasionally add to respond to newly discovered risks promptly.

ModSecurity in Dedicated Servers

ModSecurity is offered by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain which you create on the web server. In case that a web application does not function adequately, you can either disable the firewall or set it to function in passive mode. The latter means that ModSecurity shall maintain a log of any potential attack which may take place, but shall not take any action to prevent it. The logs produced in active or passive mode shall offer you more details about the exact file which was attacked, the type of the attack and the IP it came from, etcetera. This information shall allow you to determine what actions you can take to boost the protection of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules which we employ are updated constantly with a commercial package from a third-party security provider we work with, but sometimes our staff include their own rules too in the event that they come across a new potential threat.