ModSecurity is a powerful firewall for Apache web servers that's employed to prevent attacks against web apps. It monitors the HTTP traffic to a certain website in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to accomplish that - for instance, trying to log in to a script admin area unsuccessfully several times activates one rule, sending a request to execute a certain file which may result in gaining access to the site triggers another rule, etc. ModSecurity is amongst the best firewalls on the market and it'll protect even scripts which are not updated often because it can prevent attackers from employing known exploits and security holes. Incredibly thorough data about every single intrusion attempt is recorded and the logs the firewall maintains are much more specific than the standard logs provided by the Apache server, so you may later analyze them and decide if you need to take more measures in order to improve the security of your script-driven Internet sites.

ModSecurity in Cloud Hosting

We provide ModSecurity with all cloud hosting packages, so your web apps shall be shielded from destructive attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective part of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you will find within Hepsia are incredibly detailed and offer info about the nature of any attack, when it took place and from what IP address, the firewall rule which was triggered, and so forth. We employ a range of commercial rules which are frequently updated, but sometimes our administrators include custom rules as well in order to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you choose to host your Internet sites with us, there won't be anything special you will have to do given that the firewall is activated by default for all domains and subdomains which you add via your hosting CP. If necessary, you'll be able to disable ModSecurity for a given website or switch on the so-called detection mode in which case the firewall will still operate and record information, but won't do anything to stop possible attacks on your Internet sites. Comprehensive logs will be accessible inside your CP and you'll be able to see what type of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, and so forth. We use 2 sorts of rules on our servers - commercial ones from a company which operates in the field of web security, and custom ones that our admins sometimes include to respond to newly found risks promptly.

ModSecurity in VPS

ModSecurity is provided with all Hepsia-based virtual private servers we offer and it will be switched on automatically for every new domain or subdomain you add on the server. In this way, any web application that you install shall be secured right away without doing anything manually on your end. The firewall can be managed from the section of the Control Panel which bears the same name. This is the area in whichyou could switch off ModSecurity or enable its passive mode, so it will not take any action towards threats, but will still maintain a comprehensive log. The recorded data is available in the same section as well and you'll be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules we use on our servers are a mix between commercial ones which we obtain from a security organization and custom ones which are added by our administrators to enhance the protection of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

ModSecurity comes with all dedicated servers which are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it because it is enabled by default each time you add a new domain or subdomain on your server. In case it disrupts some of your programs, you will be able to stop it through the respective section of Hepsia, or you could leave it in passive mode, so it'll identify attacks and will still maintain a log for them, but won't stop them. You'll be able to examine the logs later to determine what you can do to enhance the protection of your Internet sites since you shall find information such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity reacted, etcetera. The rules that we use are commercial, hence they're regularly updated by a security firm, but to be on the safe side, our staff also add custom rules every now and then in order to respond to any new threats they have identified.