ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and if it identifies an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the traffic than any server does, so you'll be able to keep track of what is happening with your websites a lot better than if you rely only on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it detects whether anyone is attempting to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a certain command. In such cases these attempts set off the corresponding rules and the firewall software hinders the attempts immediately, after that records comprehensive details about them inside its logs. ModSecurity is among the best software firewalls out there and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.

ModSecurity in Cloud Website Hosting

We provide ModSecurity with all cloud website hosting plans, so your Internet apps shall be shielded from harmful attacks. The firewall is switched on as standard for all domains and subdomains, but if you would like, you will be able to stop it via the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall find inside Hepsia are very detailed and offer info about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, and so forth. We use a range of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our servers.

ModSecurity in VPS Web Hosting

All virtual private servers which are set up with the Hepsia Control Panel come with ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the web server, so there will not be anything special that you'll have to do to protect your sites. It'll take you only a mouse click to stop ModSecurity if needed or to switch on its passive mode so that it records what happens without taking any actions to stop intrusions. You shall be able to view the logs produced in passive or active mode through the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall employed to deal with it, etcetera. We use a mixture of commercial and custom rules so as to ensure that ModSecurity will block as many threats as possible, therefore increasing the protection of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

ModSecurity is provided with all dedicated servers which are set up with our Hepsia CP and you will not have to do anything specific on your end to use it as it's turned on by default every time you include a new domain or subdomain on your server. If it disrupts any of your programs, you will be able to stop it through the respective area of Hepsia, or you could leave it operating in passive mode, so it'll identify attacks and shall still keep a log for them, but won't prevent them. You could analyze the logs later to learn what you can do to increase the safety of your websites as you'll find details such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity reacted, and so forth. The rules we use are commercial, therefore they are frequently updated by a security provider, but to be on the safe side, our admins also add custom rules every now and then in order to deal with any new threats they have identified.