ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and if it detects an intrusion attempt, it blocks it. The firewall furthermore keeps a more comprehensive log for the site visitors than any web server does, so you shall manage to keep an eye on what is going on with your sites better than if you rely merely on standard logs. ModSecurity uses security rules based on which it prevents attacks. For instance, it identifies if anyone is trying to log in to the admin area of a given script several times or if a request is sent to execute a file with a specific command. In these instances these attempts set off the corresponding rules and the firewall hinders the attempts right away, after that records in-depth information about them within its logs. ModSecurity is among the best software firewalls out there and it can protect your web apps against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins often.

ModSecurity in Semi-dedicated Hosting

We've incorporated ModSecurity by default within all semi-dedicated hosting packages, so your web apps shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to activate or turn off the firewall for any website with a mouse click. You shall also be able to switch on a passive detection mode in which ModSecurity shall keep a log of potential attacks without actually stopping them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so on. The list of rules that we employ is regularly updated in order to match any new threats that might appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones which our administrators include if they find a threat that's not present within the commercial list yet.

ModSecurity in Dedicated Servers Hosting

If you choose to host your Internet sites on a dedicated server with the Hepsia CP, your web programs shall be secured immediately because ModSecurity is supplied with all Hepsia-based solutions. You'll be able to regulate the firewall effortlessly and if necessary, you'll be able to turn it off or enable its passive mode when it will only keep a log of what is going on without taking any action to prevent possible attacks. The logs that you can find in the exact same section of the CP are really detailed and contain info about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, etc. This data will permit you to take measures and improve the security of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our administrators include when they recognize attacks that haven't yet been included in the commercial pack.