ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and if it identifies an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the website visitors than any web server does, so you will be able to monitor what is happening with your Internet sites better than if you rely only on conventional logs. ModSecurity works with security rules based on which it stops attacks. For example, it identifies whether somebody is trying to log in to the administrator area of a given script multiple times or if a request is sent to execute a file with a particular command. In such circumstances these attempts set off the corresponding rules and the firewall program hinders the attempts right away, and then records in-depth information about them inside its logs. ModSecurity is one of the very best software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Web Hosting

ModSecurity can be found with every single web hosting solution that we provide and it's activated by default for every domain or subdomain which you add through your Hepsia CP. In the event that it disrupts any of your apps or you'd like to disable it for any reason, you will be able to accomplish that through the ModSecurity section of Hepsia with only a click. You could also enable a passive mode, so the firewall will recognize potential attacks and keep a log, but won't take any action. You could see detailed logs in the very same section, including the IP address where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, and so forth. For optimum security of our clients we use a group of commercial firewall rules mixed with custom ones which are provided by our system administrators.

ModSecurity in Dedicated Hosting

All of our dedicated servers which are installed with the Hepsia hosting Control Panel come with ModSecurity, so any app that you upload or install shall be secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you will find in the logs can enable you to to secure your websites better - the IP address an attack came from, what site was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you'll be able to see if a site needs an update, whether you should block IPs from accessing your server, etcetera. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well every time they come across a new threat that's not yet included in the commercial bundle.