ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its functionality and in case it discovers an intrusion attempt, it blocks it. The firewall also keeps a more detailed log for the site visitors than any web server does, so you shall be able to keep track of what is happening with your sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For example, it recognizes whether somebody is trying to log in to the administrator area of a certain script a number of times or if a request is sent to execute a file with a particular command. In such situations these attempts set off the corresponding rules and the software hinders the attempts immediately, then records comprehensive info about them in its logs. ModSecurity is amongst the very best software firewalls available and it can easily protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins often.

ModSecurity in Cloud Web Hosting

ModSecurity comes by default with all cloud web hosting solutions that we supply and it shall be activated automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and deactivate it with only a click or set it to detection mode, so it will maintain a log of all attacks, but it will not do anything to stop them. The log for each of your Internet sites shall contain in-depth information including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are regularly updated and comprise of both commercial ones we get from a third-party security business and custom ones that our system admins include in the event that they detect a new kind of attacks. This way, the sites you host here will be much more protected without any action needed on your end.

ModSecurity in Semi-dedicated Hosting

Any web app which you install inside your new semi-dedicated hosting account will be protected by ModSecurity as the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain you add or create via your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated section within Hepsia where not only could you activate or deactivate it completely, but you could also activate a passive mode, so the firewall won't block anything, but it will still maintain an archive of potential attacks. This normally requires only a mouse click and you will be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was dealt with, etc. The firewall employs two sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our admins update personally in order to respond to recently discovered threats as soon as possible.

ModSecurity in Dedicated Web Hosting

ModSecurity is offered as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain that you create on the hosting server. Just in case that a web app does not operate properly, you could either turn off the firewall or set it to function in passive mode. The latter means that ModSecurity shall keep a log of any possible attack that may take place, but shall not take any action to stop it. The logs generated in passive or active mode shall give you more details about the exact file that was attacked, the type of the attack and the IP it originated from, and so forth. This information shall allow you to decide what steps you can take to enhance the protection of your Internet sites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules which we use are updated constantly with a commercial pack from a third-party security enterprise we work with, but oftentimes our staff add their own rules as well in case they find a new potential threat.