ModSecurity is a highly effective firewall for Apache web servers which is used to stop attacks towards web applications. It tracks the HTTP traffic to a given site in real time and blocks any intrusion attempts the moment it detects them. The firewall uses a set of rules to do this - for instance, attempting to log in to a script admin area without success a few times triggers one rule, sending a request to execute a specific file which may result in getting access to the Internet site triggers a different rule, and so forth. ModSecurity is amongst the best firewalls out there and it'll preserve even scripts that are not updated often as it can prevent attackers from using known exploits and security holes. Incredibly thorough information about every intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the regular logs generated by the Apache server, so you can later take a look at them and determine whether you need to take additional measures in order to increase the security of your script-driven Internet sites.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting solutions, so your Internet apps shall be resistant to destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you would like, you shall be able to stop it through the respective section of your Hepsia CP. You can also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will discover inside Hepsia are incredibly detailed and feature information about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, and so forth. We employ a set of commercial rules that are regularly updated, but sometimes our administrators add custom rules as well so as to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity as a standard in all semi-dedicated hosting products, so your web apps shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will allow you to enable or disable the firewall for any Internet site with a click. You'll also have the ability to switch on a passive detection mode with which ModSecurity shall maintain a log of possible attacks without really stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack initiated, where it originated from, etcetera. The list of rules which we use is frequently updated in order to match any new risks which might appear on the Internet and it includes both commercial rules that we get from a security firm and custom-written ones that our administrators add in case they find a threat which is not present in the commercial list yet.

ModSecurity in VPS Web Hosting

Security is of the utmost importance to us, so we set up ModSecurity on all virtual private servers that are set up with the Hepsia Control Panel by default. The firewall could be managed via a dedicated section within Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you'll not need to do anything by hand. You will also be able to deactivate it or turn on the so-called detection mode, so it shall maintain a log of possible attacks you can later study, but won't block them. The logs in both passive and active modes include details about the type of the attack and how it was prevented, what IP it came from and other useful information which might help you to tighten the security of your sites by updating them or blocking IPs, for example. Beyond the commercial rules we get for ModSecurity from a third-party security firm, we also implement our own rules because once in a while we identify specific attacks that are not yet present in the commercial package. This way, we can easily improve the protection of your Virtual private server right away rather than waiting for an official update.

ModSecurity in Dedicated Servers Hosting

ModSecurity comes with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to use it as it is activated by default each time you add a new domain or subdomain on your web server. In case it interferes with some of your programs, you will be able to stop it via the respective area of Hepsia, or you may leave it in passive mode, so it shall detect attacks and shall still maintain a log for them, but will not block them. You can examine the logs later to find out what you can do to increase the safety of your Internet sites since you shall find info such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, and so on. The rules we employ are commercial, therefore they are regularly updated by a security firm, but to be on the safe side, our administrators also add custom rules every now and then in order to react to any new threats they have identified.