ModSecurity is a highly effective firewall for Apache web servers that's used to prevent attacks toward web apps. It monitors the HTTP traffic to a specific site in real time and stops any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to do this - for example, trying to log in to a script admin area unsuccessfully several times triggers one rule, sending a request to execute a particular file that may result in gaining access to the site triggers another rule, and so on. ModSecurity is amongst the best firewalls available on the market and it will protect even scripts which are not updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Very comprehensive info about every intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the conventional logs generated by the Apache server, so you could later analyze them and determine if you need to take extra measures in order to enhance the protection of your script-driven sites.

ModSecurity in Website Hosting

We provide ModSecurity with all website hosting solutions, so your web apps shall be shielded from malicious attacks. The firewall is turned on by default for all domains and subdomains, but if you would like, you'll be able to stop it through the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you will find in Hepsia are very detailed and offer info about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, and so forth. We use a range of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

We've incorporated ModSecurity as a standard within all semi-dedicated server products, so your web applications shall be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts shall allow you to enable or turn off the firewall for any Internet site with a mouse click. You'll also be able to turn on a passive detection mode through which ModSecurity will maintain a log of possible attacks without really preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack triggered, where it originated from, etc. The list of rules that we employ is frequently updated in order to match any new risks that might appear on the Internet and it consists of both commercial rules that we get from a security company and custom-written ones which our admins add in case they find a threat that is not present in the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are provided with the Hepsia hosting Control Panel, so your web programs will be secured from the second your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if needed, you could deactivate it with a click of your mouse through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it shall keep an extensive log of any possible attacks without taking any action to prevent them. The logs can be found inside the same section and provide information about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For optimum security, we use not just commercial rules from a firm working in the field of web security, but also custom ones that our admins add manually in order to react to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

All our dedicated servers that are set up with the Hepsia hosting CP come with ModSecurity, so any application you upload or set up will be secured from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An individual section within Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you shall discover in the logs can easily help you to secure your websites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this data, you can see if a site needs an update, if you need to block IPs from accessing your web server, etcetera. Besides the third-party commercial security rules for ModSecurity we use, our administrators include custom ones as well every time they come across a new threat that is not yet in the commercial bundle.