ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and when it identifies an intrusion attempt, it blocks it. The firewall also maintains a more detailed log for the website visitors than any server does, so you'll manage to keep an eye on what is going on with your Internet sites a lot better than if you rely only on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects if someone is attempting to log in to the admin area of a specific script a number of times or if a request is sent to execute a file with a certain command. In these instances these attempts trigger the corresponding rules and the firewall blocks the attempts right away, after that records detailed info about them within its logs. ModSecurity is amongst the most effective software firewalls available and it can easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Cloud Website Hosting

ModSecurity comes by default with all cloud website hosting plans that we provide and it'll be activated automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you could switch on and deactivate it with a click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your Internet sites will contain comprehensive info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules we use are regularly updated and comprise of both commercial ones that we get from a third-party security company and custom ones which our system admins include in the event that they detect a new type of attacks. That way, the sites that you host here shall be far more protected with no action needed on your end.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you choose to host your websites with our company, there will not be anything special you'll need to do as the firewall is activated by default for all domains and subdomains that you include using your hosting CP. If required, you'll be able to disable ModSecurity for a given website or activate the so-called detection mode in which case the firewall shall still work and record data, but shall not do anything to prevent possible attacks against your Internet sites. Comprehensive logs shall be readily available in your CP and you will be able to see what type of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, and so on. We employ 2 types of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones that our admins occasionally include to respond to newly identified risks on time.

ModSecurity in Dedicated Web Hosting

All of our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any program that you upload or set up shall be properly secured from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. A separate section within Hepsia will permit you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you will find in the logs can allow you to to secure your websites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, and so on. With this info, you'll be able to see whether a website needs an update, if you should block IPs from accessing your web server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our admins include custom ones too if they come across a new threat that is not yet included in the commercial bundle.