ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and if it detects an intrusion attempt, it prevents it. The firewall furthermore maintains a more detailed log for the site visitors than any server does, so you will be able to keep track of what's going on with your websites better than if you rely merely on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it identifies whether somebody is attempting to log in to the admin area of a given script multiple times or if a request is sent to execute a file with a particular command. In these situations these attempts set off the corresponding rules and the firewall blocks the attempts instantly, then records detailed information about them inside its logs. ModSecurity is amongst the most effective software firewalls out there and it could easily protect your web apps against many threats and vulnerabilities, especially if you don’t update them or their plugins regularly.

ModSecurity in Cloud Hosting

ModSecurity is supplied with all cloud hosting web servers, so when you opt to host your websites with our firm, they shall be resistant to a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you shall need to do on your end. You will be able to stop ModSecurity for any Internet site if needed, or to activate a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You'll be able to view comprehensive logs from your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity dealt with the threat. Since we take the protection of our customers' websites seriously, we use a collection of commercial rules which we get from one of the best companies which maintain such rules. Our admins also include custom rules to make sure that your sites will be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

We have included ModSecurity as a standard inside all semi-dedicated server products, so your web apps shall be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will permit you to switch on or turn off the firewall for any website with a mouse click. You will also be able to activate a passive detection mode in which ModSecurity shall maintain a log of possible attacks without actually preventing them. The detailed logs contain the nature of the attack and what ModSecurity response that attack generated, where it originated from, and so forth. The list of rules we employ is frequently updated in order to match any new threats that might appear on the Internet and it includes both commercial rules that we get from a security firm and custom-written ones that our admins include in the event that they discover a threat that's not present in the commercial list yet.