ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and when it discovers an intrusion attempt, it blocks it. The firewall additionally maintains a more detailed log for the traffic than any web server does, so you will manage to monitor what's happening with your Internet sites a lot better than if you rely simply on standard logs. ModSecurity uses security rules based on which it prevents attacks. For example, it detects if somebody is trying to log in to the administration area of a particular script a number of times or if a request is sent to execute a file with a specific command. In such situations these attempts trigger the corresponding rules and the firewall program hinders the attempts instantly, then records detailed details about them in its logs. ModSecurity is among the very best software firewalls out there and it could easily protect your web applications against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.

ModSecurity in Web Hosting

ModSecurity can be found with every single web hosting package which we provide and it is switched on by default for every domain or subdomain that you add via your Hepsia Control Panel. In the event that it disrupts any of your apps or you would like to disable it for any reason, you'll be able to achieve that through the ModSecurity area of Hepsia with just a click. You could also use a passive mode, so the firewall will recognize potential attacks and maintain a log, but won't take any action. You'll be able to view extensive logs in the same section, including the IP address where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etc. For max security of our clients we use a set of commercial firewall rules combined with custom ones which are included by our system admins.

ModSecurity in Dedicated Servers

When you choose to host your websites on a dedicated server with the Hepsia Control Panel, your web programs shall be secured immediately since ModSecurity is provided with all Hepsia-based plans. You'll be able to control the firewall with ease and if necessary, you'll be able to turn it off or switch on its passive mode when it will only keep a log of what is happening without taking any action to stop possible attacks. The logs that you can find in the same section of the Control Panel are incredibly detailed and include details about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etcetera. This data will allow you to take measures and boost the protection of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our administrators add whenever they identify attacks which have not yet been included inside the commercial pack.