ModSecurity is a highly effective firewall for Apache web servers that is used to stop attacks toward web applications. It tracks the HTTP traffic to a certain website in real time and blocks any intrusion attempts the moment it discovers them. The firewall uses a set of rules to accomplish that - for instance, trying to log in to a script administration area without success a few times activates one rule, sending a request to execute a particular file which may result in getting access to the site triggers another rule, and so forth. ModSecurity is one of the best firewalls available and it'll protect even scripts that are not updated often because it can prevent attackers from employing known exploits and security holes. Very thorough data about every single intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the regular logs created by the Apache server, so you could later examine them and determine whether you need to take more measures in order to improve the security of your script-driven Internet sites.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting packages, so your Internet apps will be protected against malicious attacks. The firewall is activated by default for all domains and subdomains, but in case you would like, you will be able to stop it via the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you will find inside Hepsia are very detailed and include info about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, etc. We use a group of commercial rules which are constantly updated, but sometimes our admins include custom rules as well so as to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web program that you install inside your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain you add or create using your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated section in Hepsia where not only can you activate or deactivate it fully, but you may also enable a passive mode, so the firewall won't block anything, but it'll still maintain a record of potential attacks. This normally requires simply a click and you will be able to look at the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was taken care of, and so on. The firewall uses 2 groups of rules on our machines - a commercial one that we get from a third-party web security company and a custom one which our admins update manually in order to respond to newly discovered risks at the earliest opportunity.

ModSecurity in VPS Hosting

ModSecurity is provided with all Hepsia-based virtual private servers which we offer and it'll be turned on automatically for every new domain or subdomain which you include on the web server. That way, any web app which you install shall be protected right away without doing anything by hand on your end. The firewall can be handled from the section of the CP that has the same name. This is the area whereyou'll be able to switch off ModSecurity or activate its passive mode, so it won't take any action toward threats, but will still maintain a thorough log. The recorded info is available within the same section as well and you'll be able to see what IPs any attacks originated from so that you stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules that we use on our servers are a combination between commercial ones that we get from a security company and custom ones which are added by our administrators to maximize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Web Hosting

ModSecurity comes with all dedicated servers which are set up with our Hepsia Control Panel and you will not need to do anything specific on your end to use it since it is enabled by default every time you include a new domain or subdomain on your server. If it disrupts any of your apps, you shall be able to stop it via the respective area of Hepsia, or you could leave it in passive mode, so it shall identify attacks and shall still keep a log for them, but will not stop them. You'll be able to examine the logs later to determine what you can do to boost the safety of your websites as you will find details such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity responded, and so on. The rules which we employ are commercial, hence they are constantly updated by a security company, but to be on the safe side, our administrators also add custom rules once in a while as to react to any new threats they have discovered.