ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and when it detects an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the website visitors than any server does, so you will manage to monitor what is going on with your sites a lot better than if you rely merely on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it detects whether somebody is trying to log in to the admin area of a certain script several times or if a request is sent to execute a file with a specific command. In such situations these attempts set off the corresponding rules and the firewall software hinders the attempts immediately, after that records detailed details about them in its logs. ModSecurity is amongst the most effective software firewalls available and it can protect your web applications against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Hosting

ModSecurity comes by default with all hosting packages that we offer and it shall be switched on automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and deactivate it with only a click or set it to detection mode, so it shall maintain a log of all attacks, but it will not do anything to stop them. The log for each of your sites shall include comprehensive information including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are regularly updated and comprise of both commercial ones which we get from a third-party security business and custom ones our system administrators add in the event that they detect a new sort of attacks. In this way, the websites you host here shall be way more protected without any action required on your end.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you choose to host your websites with us, there will not be anything special you will have to do given that the firewall is activated by default for all domains and subdomains that you add using your hosting Control Panel. If needed, you could disable ModSecurity for a given website or activate the so-called detection mode in which case the firewall shall still function and record information, but won't do anything to prevent possible attacks against your Internet sites. Comprehensive logs will be readily available within your CP and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, etc. We use 2 kinds of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones that our admins often include to respond to newly found threats promptly.

ModSecurity in Dedicated Hosting

ModSecurity is provided by default with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain you create on the web server. In case that a web app does not function properly, you could either disable the firewall or set it to function in passive mode. The second means that ModSecurity will maintain a log of any possible attack which may take place, but will not take any action to stop it. The logs created in passive or active mode shall present you with more details about the exact file that was attacked, the type of the attack and the IP it came from, and so forth. This information shall enable you to choose what steps you can take to improve the security of your sites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules which we use are updated often with a commercial bundle from a third-party security firm we work with, but sometimes our staff add their own rules too if they identify a new potential threat.