ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domain Names Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Join us

ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and if it detects an intrusion attempt, it prevents it. The firewall also maintains a more thorough log for the traffic than any server does, so you'll be able to keep track of what is happening with your websites a lot better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it stops attacks. For instance, it recognizes whether anyone is trying to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a particular command. In such instances these attempts trigger the corresponding rules and the software blocks the attempts immediately, and then records in-depth info about them inside its logs. ModSecurity is one of the very best software firewalls available and it can easily protect your web applications against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Hosting

ModSecurity comes standard with all hosting solutions that we offer and it'll be turned on automatically for any domain or subdomain you add/create inside your Hepsia hosting Control Panel. The firewall has three different modes, so you could activate and deactivate it with a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to prevent them. The log for each of your websites shall feature comprehensive info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules that we use are constantly updated and include both commercial ones which we get from a third-party security firm and custom ones which our system administrators include in case that they detect a new sort of attacks. This way, the Internet sites that you host here shall be a lot more protected with no action expected on your end.

ModSecurity in Dedicated Hosting

If you decide to host your sites on a dedicated server with the Hepsia Control Panel, your web programs will be protected right away since ModSecurity is available with all Hepsia-based solutions. You shall be able to regulate the firewall with ease and if needed, you'll be able to turn it off or activate its passive mode when it will only maintain a log of what's occurring without taking any action to stop potential attacks. The logs that you'll find within the exact same section of the Control Panel are quite detailed and feature data about the attacker IP, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This info will permit you to take measures and boost the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our staff include whenever they recognize attacks which have not yet been included within the commercial pack.