ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it detects an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the traffic than any server does, so you shall be able to keep an eye on what's happening with your websites better than if you rely simply on standard logs. ModSecurity works with security rules based on which it stops attacks. For instance, it recognizes if someone is trying to log in to the administration area of a given script a number of times or if a request is sent to execute a file with a particular command. In these situations these attempts trigger the corresponding rules and the firewall software hinders the attempts in real time, after that records comprehensive information about them in its logs. ModSecurity is amongst the most effective software firewalls available and it can easily protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

ModSecurity in Website Hosting

ModSecurity is provided with all website hosting servers, so if you opt to host your sites with our organization, they will be resistant to a wide range of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you will have to do on your end. You will be able to stop ModSecurity for any website if required, or to enable a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs from your Hepsia Control Panel including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. As we take the safety of our clients' Internet sites seriously, we use a set of commercial rules which we take from one of the best firms that maintain such rules. Our administrators also add custom rules to make certain that your websites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer come with ModSecurity and because the firewall is enabled by default, any Internet site which you build under a domain or a subdomain shall be protected right from the start. An independent section within the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll enable you to start and stop the firewall for any site or switch on a detection mode. With the last option, ModSecurity will not take any action, but it'll still recognize possible attacks and will keep all data within a log as if it were 100% active. The logs could be found in the very same section of the Control Panel and they offer information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules that we use on our web servers are a mix between commercial ones from a security firm and custom ones created by our system admins. Therefore, we provide higher security for your web programs as we can defend them from attacks even before security companies release updates for new threats.