ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its operation and in case it identifies an intrusion attempt, it blocks it. The firewall additionally keeps a more thorough log for the site visitors than any web server does, so you'll be able to keep track of what's going on with your Internet sites much better than if you rely only on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects if anyone is attempting to log in to the admin area of a particular script several times or if a request is sent to execute a file with a specific command. In these circumstances these attempts set off the corresponding rules and the firewall hinders the attempts right away, and then records in-depth information about them in its logs. ModSecurity is amongst the best software firewalls available and it can protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting plans, so your web apps will be shielded from malicious attacks. The firewall is activated as standard for all domains and subdomains, but in case you would like, you shall be able to stop it using the respective section of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you will find in Hepsia are very detailed and offer information about the nature of any attack, when it occurred and from what IP address, the firewall rule that was triggered, etc. We employ a group of commercial rules that are regularly updated, but sometimes our admins add custom rules as well so as to efficiently protect the websites hosted on our servers.

ModSecurity in Dedicated Web Hosting

ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain that you create on the hosting server. Just in case that a web app does not operate adequately, you could either turn off the firewall or set it to function in passive mode. The latter means that ModSecurity will maintain a log of any possible attack which could happen, but will not take any action to prevent it. The logs created in passive or active mode will offer you additional details about the exact file which was attacked, the nature of the attack and the IP it originated from, etcetera. This data shall allow you to decide what steps you can take to increase the security of your Internet sites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we use are updated often with a commercial package from a third-party security provider we work with, but oftentimes our admins include their own rules as well in case they find a new potential threat.