ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its operation and when it detects an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the website visitors than any server does, so you shall manage to keep an eye on what's happening with your Internet sites a lot better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it detects whether somebody is trying to log in to the administration area of a particular script several times or if a request is sent to execute a file with a certain command. In such instances these attempts trigger the corresponding rules and the firewall software blocks the attempts right away, after that records detailed info about them in its logs. ModSecurity is one of the best software firewalls available and it could easily protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting solutions, so your web applications shall be resistant to harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you would like, you will be able to stop it using the respective section of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you shall discover inside Hepsia are extremely detailed and offer information about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, etc. We use a range of commercial rules which are frequently updated, but sometimes our admins include custom rules as well so as to better protect the websites hosted on our machines.

ModSecurity in Dedicated Hosting

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia CP and you'll not need to do anything specific on your end to use it since it is turned on by default each time you add a new domain or subdomain on your web server. If it disrupts some of your programs, you shall be able to stop it through the respective section of Hepsia, or you could leave it in passive mode, so it shall identify attacks and shall still keep a log for them, but won't block them. You could examine the logs later to determine what you can do to boost the safety of your websites as you will find details such as where an intrusion attempt came from, what site was attacked and based on what rule ModSecurity responded, and so on. The rules that we use are commercial, therefore they are frequently updated by a security provider, but to be on the safe side, our administrators also include custom rules occasionally in order to respond to any new threats they have found.