ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its overall performance and when it detects an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the website visitors than any web server does, so you'll be able to monitor what is going on with your Internet sites better than if you rely only on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it detects whether anyone is attempting to log in to the admin area of a specific script multiple times or if a request is sent to execute a file with a particular command. In such instances these attempts trigger the corresponding rules and the software hinders the attempts in real time, after that records detailed information about them in its logs. ModSecurity is one of the most effective software firewalls available and it can protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Shared Web Hosting

ModSecurity comes standard with all shared web hosting plans that we supply and it'll be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and deactivate it with simply a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to prevent them. The log for each of your Internet sites will feature in-depth info including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and comprise of both commercial ones we get from a third-party security company and custom ones which our system administrators include in the event that they detect a new type of attacks. This way, the sites which you host here will be much more secure without any action expected on your end.

ModSecurity in Semi-dedicated Servers

Any web application you set up within your new semi-dedicated server account will be protected by ModSecurity as the firewall comes with all our hosting plans and is activated by default for any domain and subdomain which you add or create through your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated area within Hepsia where not simply could you activate or deactivate it completely, but you can also enable a passive mode, so the firewall will not block anything, but it will still maintain an archive of possible attacks. This normally requires simply a mouse click and you will be able to see the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was addressed, and so on. The firewall employs 2 groups of rules on our web servers - a commercial one which we get from a third-party web security firm and a custom one which our admins update personally in order to respond to recently discovered threats as fast as possible.

ModSecurity in Dedicated Servers

If you choose to host your Internet sites on a dedicated server with the Hepsia CP, your web applications will be protected right from the start because ModSecurity is provided with all Hepsia-based plans. You shall be able to control the firewall with ease and if required, you shall be able to turn it off or activate its passive mode when it shall only maintain a log of what's occurring without taking any action to stop possible attacks. The logs that you'll find in the very same section of the CP are really detailed and include information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, etc. This information shall permit you to take measures and enhance the security of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins include when they recognize attacks which have not yet been included inside the commercial pack.