ModSecurity

: Glossary; Disk Space; Hepsia Control Panel; Hosted Domains; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Buy Now

ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it detects an intrusion attempt, it prevents it. The firewall also maintains a more comprehensive log for the website visitors than any web server does, so you shall be able to keep track of what's happening with your Internet sites much better than if you rely only on standard logs. ModSecurity employs security rules based on which it stops attacks. For example, it detects if someone is trying to log in to the admin area of a certain script a number of times or if a request is sent to execute a file with a certain command. In these instances these attempts set off the corresponding rules and the firewall hinders the attempts immediately, after that records comprehensive information about them inside its logs. ModSecurity is one of the best software firewalls out there and it can easily protect your web applications against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Shared Website Hosting

ModSecurity comes by default with all shared website hosting solutions which we supply and it shall be switched on automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you can activate and disable it with just a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your Internet sites will feature comprehensive info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules which we use are regularly updated and incorporate both commercial ones that we get from a third-party security firm and custom ones our system administrators add in the event that they detect a new sort of attacks. This way, the websites you host here shall be a lot more secure without any action expected on your end.

ModSecurity in Dedicated Hosting

ModSecurity is provided as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain you create on the server. In case that a web application doesn't work properly, you can either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity will maintain a log of any possible attack that could happen, but won't take any action to stop it. The logs created in active or passive mode will offer you more details about the exact file which was attacked, the type of the attack and the IP address it originated from, and so forth. This info will enable you to decide what measures you can take to enhance the protection of your Internet sites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules we use are updated constantly with a commercial bundle from a third-party security provider we work with, but sometimes our administrators add their own rules also if they discover a new potential threat.