ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and if it identifies an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the website visitors than any web server does, so you will manage to monitor what is going on with your websites much better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it identifies if someone is trying to log in to the administration area of a specific script several times or if a request is sent to execute a file with a particular command. In these instances these attempts trigger the corresponding rules and the firewall program hinders the attempts right away, after that records in-depth info about them in its logs. ModSecurity is among the very best software firewalls out there and it can protect your web apps against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.

ModSecurity in Shared Website Hosting

We offer ModSecurity with all shared website hosting plans, so your web apps will be protected against harmful attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you'll be able to stop it via the respective part of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall discover in Hepsia are very detailed and feature info about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, and so on. We use a group of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to efficiently protect the sites hosted on our machines.

ModSecurity in Dedicated Servers

When you choose to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured right from the start because ModSecurity is provided with all Hepsia-based plans. You shall be able to control the firewall with ease and if required, you'll be able to turn it off or switch on its passive mode when it will only keep a log of what is taking place without taking any action to prevent possible attacks. The logs which you can find within the very same section of the Control Panel are really detailed and feature data about the attacker IP address, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etc. This info will allow you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our admins add every time they recognize attacks that haven't yet been included within the commercial pack.