ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and in case it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more detailed log for the site visitors than any server does, so you will manage to keep track of what's happening with your sites better than if you rely merely on standard logs. ModSecurity uses security rules based on which it stops attacks. For instance, it detects whether anyone is attempting to log in to the admin area of a specific script multiple times or if a request is sent to execute a file with a specific command. In such cases these attempts trigger the corresponding rules and the software blocks the attempts immediately, after that records in-depth info about them within its logs. ModSecurity is amongst the best software firewalls out there and it can easily protect your web applications against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Web Hosting

ModSecurity comes standard with all web hosting plans which we offer and it shall be switched on automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to activate and deactivate it with a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to prevent them. The log for any of your websites shall include in-depth info including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are constantly updated and include both commercial ones which we get from a third-party security firm and custom ones our system admins include in case that they detect a new kind of attacks. That way, the websites which you host here shall be much more protected with no action required on your end.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting solutions and if you choose to host your sites with us, there will not be anything special you'll need to do since the firewall is activated by default for all domains and subdomains you include via your hosting Control Panel. If needed, you'll be able to disable ModSecurity for a particular Internet site or activate the so-called detection mode in which case the firewall will still work and record data, but will not do anything to prevent potential attacks on your sites. Detailed logs will be readily available in your CP and you'll be able to see what sort of attacks occurred, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks came from, and so forth. We employ 2 kinds of rules on our servers - commercial ones from a business that operates in the field of web security, and customized ones which our admins sometimes include to respond to newly identified risks promptly.

ModSecurity in Dedicated Servers Hosting

ModSecurity is included with all dedicated servers that are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it because it's switched on by default every time you include a new domain or subdomain on your server. In the event that it interferes with any of your programs, you will be able to stop it through the respective section of Hepsia, or you may leave it working in passive mode, so it will detect attacks and will still keep a log for them, but shall not stop them. You'll be able to analyze the logs later to find out what you can do to enhance the safety of your Internet sites since you will find details such as where an intrusion attempt originated from, what website was attacked and based on what rule ModSecurity responded, etcetera. The rules we employ are commercial, hence they're regularly updated by a security company, but to be on the safe side, our administrators also add custom rules from time to time in order to respond to any new threats they have found.