ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and in case it detects an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the site visitors than any server does, so you'll be able to keep track of what's happening with your sites better than if you rely only on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes if somebody is attempting to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a specific command. In these instances these attempts trigger the corresponding rules and the software hinders the attempts instantly, then records comprehensive info about them within its logs. ModSecurity is one of the most effective software firewalls out there and it could easily protect your web apps against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.

ModSecurity in Cloud Web Hosting

ModSecurity comes by default with all cloud web hosting plans that we offer and it will be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and disable it with just a click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to prevent them. The log for any of your websites will include in-depth information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are regularly updated and include both commercial ones that we get from a third-party security business and custom ones our system admins include in case that they detect a new kind of attacks. This way, the websites which you host here shall be a lot more secure without any action expected on your end.

ModSecurity in Dedicated Servers Hosting

If you opt to host your websites on a dedicated server with the Hepsia CP, your web applications will be protected straight away since ModSecurity is supplied with all Hepsia-based packages. You shall be able to regulate the firewall with ease and if needed, you shall be able to turn it off or enable its passive mode when it'll only keep a log of what's taking place without taking any action to stop potential attacks. The logs which you will find in the exact same section of the Control Panel are quite detailed and feature data about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so forth. This info will enable you to take measures and boost the security of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our administrators include when they identify attacks that haven't yet been included in the commercial pack.