ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and in case it detects an intrusion attempt, it blocks it. The firewall additionally maintains a more detailed log for the traffic than any server does, so you shall manage to monitor what is happening with your websites better than if you rely simply on standard logs. ModSecurity works with security rules based on which it stops attacks. For instance, it identifies whether anyone is trying to log in to the admin area of a particular script several times or if a request is sent to execute a file with a particular command. In such circumstances these attempts trigger the corresponding rules and the software blocks the attempts immediately, after that records comprehensive information about them inside its logs. ModSecurity is amongst the very best software firewalls on the market and it could easily protect your web applications against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Cloud Hosting

ModSecurity is available with every cloud hosting solution that we offer and it's switched on by default for every domain or subdomain that you add via your Hepsia Control Panel. In case it interferes with any of your applications or you'd like to disable it for whatever reason, you shall be able to do that through the ModSecurity area of Hepsia with only a click. You could also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but shall not take any action. You'll be able to see detailed logs in the very same section, including the IP where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For maximum protection of our customers we use a set of commercial firewall rules combined with custom ones that are provided by our system admins.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans that we offer come with ModSecurity and because the firewall is switched on by default, any Internet site which you set up under a domain or a subdomain will be protected right away. A separate section in the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to stop and start the firewall for any site or switch on a detection mode. With the last mentioned, ModSecurity won't take any action, but it will still recognize possible attacks and shall keep all data within a log as if it were fully active. The logs can be found in the exact same section of the CP and they include details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we employ on our servers are a mix of commercial ones from a security business and custom ones created by our system admins. Therefore, we offer increased security for your web apps as we can defend them from attacks even before security companies release updates for brand new threats.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers that are set up with our Hepsia CP and you'll not have to do anything specific on your end to use it since it is activated by default each time you include a new domain or subdomain on your server. If it disrupts some of your programs, you will be able to stop it via the respective section of Hepsia, or you can leave it working in passive mode, so it'll identify attacks and shall still maintain a log for them, but shall not stop them. You could examine the logs later to find out what you can do to enhance the security of your Internet sites since you'll find information such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity responded, and so on. The rules which we employ are commercial, therefore they are regularly updated by a security firm, but to be on the safe side, our administrators also include custom rules from time to time as to deal with any new threats they have identified.