ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and when it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more detailed log for the site visitors than any server does, so you will manage to keep track of what is going on with your websites much better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it prevents attacks. For example, it recognizes whether someone is attempting to log in to the admin area of a given script multiple times or if a request is sent to execute a file with a specific command. In these situations these attempts set off the corresponding rules and the firewall blocks the attempts instantly, then records detailed information about them inside its logs. ModSecurity is among the very best software firewalls out there and it can protect your web applications against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Website Hosting

ModSecurity can be found with every website hosting package that we offer and it's switched on by default for any domain or subdomain which you add via your Hepsia Control Panel. If it disrupts any of your applications or you would like to disable it for any reason, you will be able to accomplish that through the ModSecurity section of Hepsia with simply a mouse click. You can also use a passive mode, so the firewall will discover possible attacks and keep a log, but won't take any action. You can view comprehensive logs in the very same section, including the IP where the attack originated from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etcetera. For optimum protection of our clients we use a collection of commercial firewall rules mixed with custom ones which are provided by our system admins.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting CP, so your web programs will be secured from the instant your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you'll be able to deactivate it with a click of your mouse through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it'll keep a detailed log of any potential attacks without taking any action to prevent them. The logs are available in the very same section and include information about the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For maximum security, we use not simply commercial rules from a company working in the field of web security, but also custom ones our administrators include personally in order to respond to new threats that are still not dealt with in the commercial rules.