ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and if it identifies an intrusion attempt, it blocks it. The firewall also keeps a more thorough log for the website visitors than any web server does, so you will manage to keep an eye on what's happening with your Internet sites a lot better than if you rely merely on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes whether someone is attempting to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the firewall software hinders the attempts immediately, after that records comprehensive information about them within its logs. ModSecurity is among the best software firewalls on the market and it could easily protect your web apps against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Website Hosting

ModSecurity comes by default with all website hosting packages which we supply and it shall be activated automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and deactivate it with just a click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to stop them. The log for each of your sites shall include in-depth info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules we use are constantly updated and comprise of both commercial ones that we get from a third-party security company and custom ones which our system admins include in case that they detect a new kind of attacks. This way, the websites which you host here will be way more protected with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer include ModSecurity and since the firewall is turned on by default, any site which you create under a domain or a subdomain will be secured right from the start. An independent section in the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to start and stop the firewall for any website or activate a detection mode. With the last mentioned, ModSecurity won't take any action, but it will still recognize possible attacks and shall keep all information inside a log as if it were completely active. The logs can be found inside the exact same section of the CP and they feature specifics about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules that we use on our servers are a mix of commercial ones from a security company and custom ones created by our system admins. Therefore, we offer increased security for your web applications as we can protect them from attacks even before security businesses release updates for completely new threats.

ModSecurity in Dedicated Hosting

ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain that you create on the web server. In the event that a web application doesn't work correctly, you may either disable the firewall or set it to function in passive mode. The latter means that ModSecurity shall maintain a log of any possible attack that could happen, but won't take any action to stop it. The logs generated in passive or active mode shall present you with additional details about the exact file which was attacked, the form of the attack and the IP it originated from, and so forth. This info will permit you to choose what actions you can take to boost the security of your websites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules we use are updated often with a commercial pack from a third-party security enterprise we work with, but sometimes our administrators include their own rules too in the event that they discover a new potential threat.