ModSecurity is an effective firewall for Apache web servers that is employed to prevent attacks against web apps. It monitors the HTTP traffic to a certain Internet site in real time and stops any intrusion attempts as soon as it detects them. The firewall relies on a set of rules to do that - for instance, trying to log in to a script administrator area without success several times triggers one rule, sending a request to execute a particular file that could result in accessing the site triggers another rule, etcetera. ModSecurity is amongst the best firewalls available on the market and it'll protect even scripts which aren't updated on a regular basis because it can prevent attackers from using known exploits and security holes. Incredibly thorough information about every single intrusion attempt is recorded and the logs the firewall keeps are much more specific than the conventional logs provided by the Apache server, so you can later analyze them and decide if you need to take extra measures so as to boost the security of your script-driven sites.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting plans, so your Internet applications shall be protected against harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you will be able to stop it through the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you'll discover within Hepsia are extremely detailed and offer information about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, and so on. We employ a group of commercial rules that are constantly updated, but sometimes our admins include custom rules as well in order to better protect the websites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

Any web application you set up in your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain you add or create using your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated area inside Hepsia where not only could you activate or deactivate it fully, but you could also activate a passive mode, so the firewall won't block anything, but it'll still keep an archive of potential attacks. This takes only a click and you will be able to look at the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, etc. The firewall employs two sets of rules on our machines - a commercial one which we get from a third-party web security firm and a custom one that our admins update personally in order to respond to newly discovered threats as fast as possible.

ModSecurity in VPS

ModSecurity comes with all Hepsia-based virtual private servers which we offer and it'll be turned on automatically for any new domain or subdomain which you add on the hosting server. In this way, any web application which you install will be secured from the very beginning without doing anything personally on your end. The firewall can be handled via the section of the CP which bears the same name. This is the place in whichyou can switch off ModSecurity or enable its passive mode, so it won't take any action toward threats, but will still maintain a detailed log. The recorded information is available within the same section as well and you'll be able to see what IPs any attacks originated from so that you block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we employ on our servers are a combination between commercial ones that we get from a security firm and custom ones which are included by our administrators to maximize the security of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

When you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web programs will be secured straight away because ModSecurity is supplied with all Hepsia-based solutions. You shall be able to control the firewall easily and if required, you shall be able to turn it off or switch on its passive mode when it'll only maintain a log of what is occurring without taking any action to prevent potential attacks. The logs that you can find inside the same section of the CP are very detailed and include info about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etcetera. This information shall allow you to take measures and boost the protection of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff include when they identify attacks which have not yet been included in the commercial pack.