ModSecurity is an effective firewall for Apache web servers that is employed to stop attacks against web applications. It keeps track of the HTTP traffic to a specific Internet site in real time and blocks any intrusion attempts the moment it detects them. The firewall uses a set of rules to do this - as an example, trying to log in to a script administration area without success many times activates one rule, sending a request to execute a particular file which could result in getting access to the Internet site triggers another rule, and so on. ModSecurity is amongst the best firewalls on the market and it'll protect even scripts that aren't updated often because it can prevent attackers from using known exploits and security holes. Very thorough information about each and every intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the regular logs generated by the Apache server, so you could later take a look at them and decide whether you need to take additional measures so as to increase the protection of your script-driven sites.

ModSecurity in Website Hosting

We provide ModSecurity with all website hosting packages, so your web applications shall be resistant to destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you shall be able to stop it using the respective section of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you will discover in Hepsia are very detailed and include data about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, and so on. We employ a set of commercial rules that are frequently updated, but sometimes our admins include custom rules as well so as to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web app you set up within your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is provided with all our hosting plans and is turned on by default for any domain and subdomain you add or create using your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated section within Hepsia where not only can you activate or deactivate it entirely, but you could also switch on a passive mode, so the firewall shall not block anything, but it'll still maintain an archive of possible attacks. This requires simply a mouse click and you shall be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall uses 2 sets of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one which our administrators update manually as to respond to newly discovered risks as fast as possible.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web applications will be protected from the moment your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you can deactivate it with a click of your mouse via the corresponding section of Hepsia. You may also set it to operate in detection mode, so it will maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs can be found within the very same section and offer information about the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For best security, we use not just commercial rules from a company operating in the field of web security, but also custom ones which our administrators include personally so as to react to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Hosting

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it since it's turned on by default each time you add a new domain or subdomain on your server. In case it interferes with some of your applications, you'll be able to stop it through the respective area of Hepsia, or you can leave it working in passive mode, so it will identify attacks and will still maintain a log for them, but will not prevent them. You can analyze the logs later to learn what you can do to enhance the safety of your sites as you'll find info such as where an intrusion attempt came from, what website was attacked and based on what rule ModSecurity responded, and so forth. The rules we employ are commercial, therefore they are constantly updated by a security company, but to be on the safe side, our admins also add custom rules from time to time in order to deal with any new threats they have found.