ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and in case it discovers an intrusion attempt, it blocks it. The firewall furthermore keeps a more detailed log for the site visitors than any web server does, so you shall be able to keep track of what's happening with your Internet sites a lot better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it stops attacks. For instance, it detects whether somebody is trying to log in to the admin area of a given script several times or if a request is sent to execute a file with a particular command. In these circumstances these attempts set off the corresponding rules and the firewall software hinders the attempts right away, and then records in-depth info about them inside its logs. ModSecurity is amongst the very best software firewalls on the market and it can easily protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Shared Hosting

ModSecurity comes standard with all shared hosting plans which we provide and it shall be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you can switch on and disable it with a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to stop them. The log for each of your websites will contain comprehensive information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are frequently updated and incorporate both commercial ones that we get from a third-party security business and custom ones our system admins add in the event that they detect a new kind of attacks. In this way, the websites which you host here shall be a lot more protected with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting plans and if you opt to host your websites with our company, there shall not be anything special you will have to do as the firewall is activated by default for all domains and subdomains you include using your hosting Control Panel. If necessary, you can disable ModSecurity for a particular site or enable the so-called detection mode in which case the firewall will still operate and record data, but won't do anything to stop potential attacks on your sites. Comprehensive logs will be readily available within your Control Panel and you shall be able to see which kind of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, etc. We employ two sorts of rules on our servers - commercial ones from a company that operates in the field of web security, and custom made ones which our admins sometimes add to respond to newly identified risks promptly.

ModSecurity in Dedicated Servers Hosting

If you opt to host your websites on a dedicated server with the Hepsia Control Panel, your web programs shall be protected immediately as ModSecurity is supplied with all Hepsia-based plans. You'll be able to control the firewall easily and if needed, you'll be able to turn it off or enable its passive mode when it will only keep a log of what's taking place without taking any action to prevent possible attacks. The logs that you'll find within the exact same section of the CP are really detailed and include details about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, etcetera. This information shall allow you to take measures and boost the security of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our admins add every time they detect attacks that have not yet been included in the commercial pack.