ModSecurity is an efficient firewall for Apache web servers which is used to stop attacks against web applications. It keeps track of the HTTP traffic to a particular Internet site in real time and stops any intrusion attempts the instant it discovers them. The firewall uses a set of rules to do that - as an example, attempting to log in to a script admin area without success many times sets off one rule, sending a request to execute a specific file that may result in getting access to the site triggers a different rule, etcetera. ModSecurity is among the best firewalls around and it will protect even scripts which are not updated often as it can prevent attackers from employing known exploits and security holes. Quite thorough data about every intrusion attempt is recorded and the logs the firewall keeps are considerably more detailed than the regular logs generated by the Apache server, so you can later take a look at them and decide whether you need to take additional measures in order to improve the protection of your script-driven Internet sites.

ModSecurity in Shared Hosting

ModSecurity can be found with every single shared hosting solution which we provide and it is turned on by default for every domain or subdomain that you add through your Hepsia CP. In case it disrupts any of your applications or you would like to disable it for some reason, you shall be able to do this through the ModSecurity area of Hepsia with merely a click. You may also enable a passive mode, so the firewall will detect possible attacks and maintain a log, but will not take any action. You'll be able to view extensive logs in the same section, including the IP where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, and so on. For max protection of our clients we use a group of commercial firewall rules blended with custom ones which are provided by our system admins.

ModSecurity in Semi-dedicated Hosting

We've incorporated ModSecurity as a standard within all semi-dedicated hosting products, so your web applications shall be protected whenever you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will permit you to switch on or turn off the firewall for any Internet site with a click. You will also have the ability to switch on a passive detection mode through which ModSecurity shall keep a log of potential attacks without actually preventing them. The thorough logs contain the nature of the attack and what ModSecurity response that attack caused, where it originated from, and so forth. The list of rules which we use is regularly updated in order to match any new threats which may appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones which our admins include in the event that they discover a threat that's not present within the commercial list yet.

ModSecurity in VPS Hosting

Security is extremely important to us, so we set up ModSecurity on all virtual private servers that are set up with the Hepsia CP by default. The firewall could be managed through a dedicated section in Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you'll not need to do anything by hand. You will also be able to disable it or switch on the so-called detection mode, so it'll maintain a log of potential attacks which you can later analyze, but shall not block them. The logs in both passive and active modes include details regarding the form of the attack and how it was eliminated, what IP it originated from and other important data that may help you to tighten the security of your websites by updating them or blocking IPs, for example. Besides the commercial rules that we get for ModSecurity from a third-party security company, we also implement our own rules since once in a while we discover specific attacks which aren't yet present within the commercial package. That way, we can boost the protection of your Virtual private server promptly as opposed to awaiting an official update.

ModSecurity in Dedicated Web Hosting

All our dedicated servers which are set up with the Hepsia hosting Control Panel include ModSecurity, so any application you upload or install will be properly secured from the very beginning and you will not need to bother about common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you'll see in the logs can help you to secure your websites better - the IP an attack came from, what site was attacked and in what way, what ModSecurity rule was triggered, etc. With this data, you can see if a website needs an update, whether you should block IPs from accessing your web server, and so forth. On top of the third-party commercial security rules for ModSecurity which we use, our admins include custom ones too when they discover a new threat that is not yet a part of the commercial bundle.