ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks towards web applications. It tracks the HTTP traffic to a specific website in real time and prevents any intrusion attempts the moment it identifies them. The firewall uses a set of rules to do that - for example, attempting to log in to a script admin area without success many times sets off one rule, sending a request to execute a certain file that may result in gaining access to the site triggers another rule, and so forth. ModSecurity is among the best firewalls available and it'll protect even scripts that aren't updated often as it can prevent attackers from using known exploits and security holes. Incredibly comprehensive info about every intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the standard logs provided by the Apache server, so you may later take a look at them and decide whether you need to take additional measures so as to increase the protection of your script-driven sites.

ModSecurity in Web Hosting

We provide ModSecurity with all web hosting plans, so your Internet applications shall be protected against destructive attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you'll be able to stop it through the respective section of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you shall find within Hepsia are extremely detailed and include data about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, etcetera. We employ a set of commercial rules that are constantly updated, but sometimes our admins add custom rules as well so as to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

Any web app you set up inside your new semi-dedicated server account will be protected by ModSecurity as the firewall comes with all our hosting packages and is turned on by default for any domain and subdomain that you include or create through your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated area inside Hepsia where not only can you activate or deactivate it fully, but you may also switch on a passive mode, so the firewall shall not stop anything, but it will still maintain a record of potential attacks. This normally requires simply a mouse click and you will be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was taken care of, and so forth. The firewall uses two groups of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one that our administrators update personally in order to respond to recently discovered risks as fast as possible.

ModSecurity in VPS Servers

Security is very important to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia CP as a standard. The firewall could be managed through a dedicated section in Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you won't need to do anything manually. You'll also be able to deactivate it or switch on the so-called detection mode, so it will keep a log of potential attacks that you can later analyze, but will not stop them. The logs in both passive and active modes include info regarding the form of the attack and how it was eliminated, what IP it originated from and other valuable data that could help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. Beyond the commercial rules that we get for ModSecurity from a third-party security company, we also implement our own rules as once in a while we identify specific attacks that are not yet present in the commercial pack. This way, we can improve the security of your Virtual private server in a timely manner instead of awaiting an official update.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are set up with our Hepsia CP and you'll not need to do anything specific on your end to employ it because it's turned on by default each time you include a new domain or subdomain on your hosting server. In the event that it disrupts any of your apps, you will be able to stop it via the respective section of Hepsia, or you may leave it in passive mode, so it will recognize attacks and will still keep a log for them, but shall not stop them. You can examine the logs later to find out what you can do to increase the security of your Internet sites as you shall find info such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity responded, and so forth. The rules which we employ are commercial, thus they are constantly updated by a security firm, but to be on the safe side, our administrators also add custom rules every now and then as to respond to any new threats they have found.