ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and if it detects an intrusion attempt, it prevents it. The firewall also keeps a more detailed log for the website visitors than any server does, so you'll manage to keep track of what is happening with your websites much better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it identifies if someone is trying to log in to the administration area of a certain script several times or if a request is sent to execute a file with a certain command. In such situations these attempts set off the corresponding rules and the firewall software hinders the attempts in real time, after that records detailed details about them within its logs. ModSecurity is among the best software firewalls on the market and it could easily protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Shared Web Hosting

ModSecurity can be found with each shared web hosting package which we offer and it is turned on by default for any domain or subdomain that you add via your Hepsia CP. If it interferes with any of your applications or you would like to disable it for some reason, you will be able to do this through the ModSecurity section of Hepsia with simply a click. You can also enable a passive mode, so the firewall will discover potential attacks and keep a log, but will not take any action. You could view extensive logs in the same section, including the IP where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, etcetera. For max protection of our clients we use a set of commercial firewall rules mixed with custom ones which are provided by our system admins.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting packages and if you opt to host your websites with us, there will not be anything special you'll need to do as the firewall is activated by default for all domains and subdomains which you include using your hosting Control Panel. If needed, you can disable ModSecurity for a given website or switch on the so-called detection mode in which case the firewall shall still function and record data, but shall not do anything to prevent potential attacks against your websites. Detailed logs will be accessible in your Control Panel and you'll be able to see what sort of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, and so on. We employ 2 sorts of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones which our administrators occasionally add to respond to newly discovered risks on time.

ModSecurity in Dedicated Servers Hosting

ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you won't need to do anything specific on your end to use it since it is enabled by default whenever you include a new domain or subdomain on your web server. If it disrupts any of your programs, you will be able to stop it through the respective section of Hepsia, or you can leave it working in passive mode, so it will identify attacks and will still keep a log for them, but shall not stop them. You'll be able to analyze the logs later to find out what you can do to increase the protection of your websites since you will find information such as where an intrusion attempt originated from, what website was attacked and based on what rule ModSecurity reacted, and so on. The rules we use are commercial, hence they're frequently updated by a security company, but to be on the safe side, our administrators also include custom rules every now and then in order to deal with any new threats they have identified.