ModSecurity is an efficient firewall for Apache web servers which is used to prevent attacks towards web apps. It keeps track of the HTTP traffic to a certain website in real time and stops any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to accomplish that - for example, trying to log in to a script administration area unsuccessfully a few times activates one rule, sending a request to execute a particular file which could result in getting access to the website triggers a different rule, etcetera. ModSecurity is one of the best firewalls out there and it will secure even scripts that are not updated on a regular basis as it can prevent attackers from using known exploits and security holes. Incredibly comprehensive data about each intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the standard logs provided by the Apache server, so you could later examine them and decide if you need to take additional measures in order to increase the safety of your script-driven sites.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting packages, so your Internet apps will be shielded from destructive attacks. The firewall is turned on as standard for all domains and subdomains, but if you would like, you'll be able to stop it through the respective section of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you'll discover inside Hepsia are incredibly detailed and offer data about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, and so forth. We employ a range of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well in order to efficiently protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer include ModSecurity and given that the firewall is enabled by default, any website which you build under a domain or a subdomain shall be protected immediately. A separate section inside the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll enable you to start and stop the firewall for any website or enable a detection mode. With the last option, ModSecurity will not take any action, but it'll still detect possible attacks and will keep all info inside a log as if it were 100% active. The logs can be found in the exact same section of the CP and they feature details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so forth. The security rules which we employ on our web servers are a mix of commercial ones from a security business and custom ones created by our system administrators. For that reason, we offer increased security for your web applications as we can shield them from attacks before security corporations release updates for completely new threats.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting CP, so your web applications shall be protected from the instant your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if required, you can disable it with a click from the corresponding section of Hepsia. You can also set it to operate in detection mode, so it'll maintain an extensive log of any possible attacks without taking any action to prevent them. The logs are available within the very same section and offer information regarding the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For best security, we use not simply commercial rules from a firm operating in the field of web security, but also custom ones which our admins include personally in order to respond to new risks which are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers which are integrated with our Hepsia Control Panel and you will not need to do anything specific on your end to use it because it is switched on by default every time you include a new domain or subdomain on your web server. In the event that it interferes with some of your apps, you shall be able to stop it through the respective section of Hepsia, or you could leave it in passive mode, so it shall recognize attacks and will still maintain a log for them, but shall not block them. You could examine the logs later to determine what you can do to boost the protection of your Internet sites as you shall find details such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity reacted, etc. The rules which we use are commercial, thus they are regularly updated by a security company, but to be on the safe side, our staff also add custom rules occasionally in order to react to any new threats they have identified.