ModSecurity is a highly effective firewall for Apache web servers that's used to prevent attacks against web applications. It keeps track of the HTTP traffic to a specific Internet site in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to accomplish that - for example, attempting to log in to a script admin area unsuccessfully several times triggers one rule, sending a request to execute a certain file which could result in gaining access to the site triggers a different rule, and so on. ModSecurity is among the best firewalls available and it'll secure even scripts that are not updated regularly as it can prevent attackers from employing known exploits and security holes. Quite detailed info about every single intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the conventional logs provided by the Apache server, so you may later examine them and determine if you need to take additional measures in order to boost the protection of your script-driven websites.

ModSecurity in Shared Web Hosting

ModSecurity comes by default with all shared web hosting plans which we provide and it shall be switched on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you can switch on and disable it with just a click or set it to detection mode, so it will maintain a log of all attacks, but it will not do anything to stop them. The log for each of your sites shall contain detailed information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules we use are regularly updated and comprise of both commercial ones that we get from a third-party security business and custom ones that our system admins add in case that they detect a new kind of attacks. This way, the websites that you host here shall be a lot more secure with no action expected on your end.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity as a standard within all semi-dedicated server products, so your web apps will be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will permit you to switch on or turn off the firewall for any website with a click. You will also be able to turn on a passive detection mode in which ModSecurity will maintain a log of possible attacks without actually stopping them. The thorough logs include the nature of the attack and what ModSecurity response that attack activated, where it came from, etcetera. The list of rules which we employ is frequently updated as to match any new threats which may appear on the Internet and it consists of both commercial rules that we get from a security company and custom-written ones that our admins add if they discover a threat that is not present in the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers that we offer and it shall be activated automatically for any new domain or subdomain that you include on the machine. That way, any web app which you install will be secured right away without doing anything by hand on your end. The firewall may be handled via the section of the CP which has the same name. This is the location in whichyou'll be able to turn off ModSecurity or let its passive mode, so it won't take any action against threats, but will still keep a detailed log. The recorded data is available within the same area as well and you shall be able to see what IPs any attacks came from so that you block them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules we use on our servers are a blend between commercial ones we get from a security organization and custom ones which are added by our staff to enhance the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are integrated with our Hepsia Control Panel and you will not need to do anything specific on your end to use it as it's switched on by default whenever you include a new domain or subdomain on your hosting server. In case it disrupts any of your apps, you'll be able to stop it through the respective part of Hepsia, or you may leave it working in passive mode, so it'll detect attacks and shall still keep a log for them, but won't stop them. You could look at the logs later to find out what you can do to increase the safety of your Internet sites since you will find information such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, etc. The rules we use are commercial, hence they're frequently updated by a security provider, but to be on the safe side, our admins also add custom rules every now and then as to deal with any new threats they have found.