ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and in case it discovers an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the traffic than any web server does, so you'll manage to monitor what's happening with your Internet sites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it prevents attacks. For example, it detects whether someone is attempting to log in to the administrator area of a given script multiple times or if a request is sent to execute a file with a particular command. In these situations these attempts set off the corresponding rules and the firewall program hinders the attempts immediately, then records comprehensive information about them in its logs. ModSecurity is among the very best software firewalls out there and it could easily protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting solutions that we offer and it shall be activated automatically for any domain or subdomain which you add/create inside your Hepsia hosting Control Panel. The firewall has three different modes, so you can activate and disable it with simply a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your sites shall feature elaborate information including the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are regularly updated and incorporate both commercial ones which we get from a third-party security business and custom ones that our system admins include in the event that they detect a new kind of attacks. That way, the websites you host here shall be much more secure without any action expected on your end.

ModSecurity in Dedicated Servers

All our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any program that you upload or install shall be properly secured from the very beginning and you will not have to stress about common attacks or vulnerabilities. A separate section within Hepsia will permit you to start or stop the firewall for every domain or subdomain, or activate a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you shall discover in the logs can easily help you to secure your Internet sites better - the IP address an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this info, you'll be able to see whether a site needs an update, whether you should block IPs from accessing your server, and so forth. Aside from the third-party commercial security rules for ModSecurity that we use, our admins include custom ones as well every time they discover a new threat which is not yet a part of the commercial bundle.