ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and in case it detects an intrusion attempt, it blocks it. The firewall additionally keeps a more thorough log for the traffic than any server does, so you'll be able to keep track of what's going on with your Internet sites better than if you rely simply on standard logs. ModSecurity works with security rules based on which it prevents attacks. For instance, it identifies whether somebody is attempting to log in to the admin area of a specific script multiple times or if a request is sent to execute a file with a particular command. In such circumstances these attempts trigger the corresponding rules and the firewall software hinders the attempts instantly, then records comprehensive info about them inside its logs. ModSecurity is among the very best software firewalls out there and it could easily protect your web applications against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.

ModSecurity in Cloud Website Hosting

ModSecurity is offered with every single cloud website hosting plan which we provide and it's turned on by default for every domain or subdomain which you add through your Hepsia Control Panel. In the event that it interferes with any of your applications or you'd like to disable it for whatever reason, you'll be able to achieve that through the ModSecurity section of Hepsia with just a click. You could also activate a passive mode, so the firewall will recognize potential attacks and keep a log, but won't take any action. You could view comprehensive logs in the same section, including the IP address where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, and so on. For max protection of our clients we use a group of commercial firewall rules blended with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Servers

Any web app you set up within your new semi-dedicated server account shall be protected by ModSecurity because the firewall is provided with all our hosting plans and is turned on by default for any domain and subdomain that you include or create via your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated section within Hepsia where not simply could you activate or deactivate it fully, but you can also switch on a passive mode, so the firewall will not stop anything, but it shall still maintain a record of potential attacks. This normally requires only a mouse click and you will be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was dealt with, etc. The firewall employs two sets of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one which our admins update personally in order to respond to recently discovered threats as fast as possible.

ModSecurity in Dedicated Servers

All our dedicated servers which are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or set up will be properly secured from the very beginning and you won't need to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you will find in the logs can enable you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked as well as how, what ModSecurity rule was triggered, and so forth. With this info, you could see if a website needs an update, whether you should block IPs from accessing your web server, and so forth. In addition to the third-party commercial security rules for ModSecurity we use, our admins include custom ones as well when they come across a new threat which is not yet in the commercial bundle.