ModSecurity is an effective firewall for Apache web servers that's employed to stop attacks against web apps. It tracks the HTTP traffic to a specific Internet site in real time and blocks any intrusion attempts the instant it detects them. The firewall uses a set of rules to do this - for example, trying to log in to a script administrator area without success several times triggers one rule, sending a request to execute a certain file that may result in getting access to the website triggers a different rule, and so on. ModSecurity is amongst the best firewalls out there and it'll preserve even scripts that aren't updated often as it can prevent attackers from employing known exploits and security holes. Very comprehensive data about every intrusion attempt is recorded and the logs the firewall maintains are much more specific than the standard logs generated by the Apache server, so you can later analyze them and decide whether you need to take additional measures in order to increase the safety of your script-driven Internet sites.

ModSecurity in Hosting

ModSecurity is offered with every single hosting plan which we provide and it's switched on by default for any domain or subdomain that you add via your Hepsia Control Panel. If it disrupts any of your applications or you'd like to disable it for some reason, you shall be able to accomplish that through the ModSecurity section of Hepsia with only a mouse click. You could also use a passive mode, so the firewall will recognize possible attacks and maintain a log, but won't take any action. You'll be able to view comprehensive logs in the exact same section, including the IP address where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, etc. For optimum safety of our customers we use a collection of commercial firewall rules combined with custom ones which are included by our system admins.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting plans and if you choose to host your websites with our company, there shall not be anything special you will have to do as the firewall is turned on by default for all domains and subdomains which you add via your hosting CP. If required, you'll be able to disable ModSecurity for a given Internet site or turn on the so-called detection mode in which case the firewall shall still function and record information, but shall not do anything to prevent potential attacks on your sites. Comprehensive logs shall be readily available in your CP and you'll be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks originated from, and so forth. We use two types of rules on our servers - commercial ones from an organization which operates in the field of web security, and custom made ones which our administrators often add to respond to newly found risks promptly.

ModSecurity in VPS Hosting

All virtual private servers which are set up with the Hepsia CP feature ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the web server, so there won't be anything special that you shall have to do to protect your websites. It shall take you only a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what occurs without taking any actions to stop intrusions. You will be able to view the logs generated in passive or active mode from the corresponding section of Hepsia and find out more about the type of the attack, where it originated from, what rule the firewall employed to deal with it, and so forth. We employ a mix of commercial and custom rules so as to make sure that ModSecurity will block as many risks as possible, therefore improving the protection of your web apps as much as possible.

ModSecurity in Dedicated Web Hosting

All of our dedicated servers which are set up with the Hepsia hosting CP come with ModSecurity, so any app you upload or set up will be secured from the very beginning and you'll not need to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you'll see in the logs can enable you to to secure your sites better - the IP an attack came from, what website was attacked and how, what ModSecurity rule was triggered, etc. With this information, you'll be able to see whether a website needs an update, if you need to block IPs from accessing your server, and so forth. In addition to the third-party commercial security rules for ModSecurity we use, our admins add custom ones too when they find a new threat that's not yet a part of the commercial bundle.