ModSecurity is an efficient firewall for Apache web servers which is employed to prevent attacks towards web apps. It monitors the HTTP traffic to a particular website in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to accomplish that - for instance, trying to log in to a script administrator area unsuccessfully several times sets off one rule, sending a request to execute a certain file that could result in gaining access to the website triggers a different rule, etcetera. ModSecurity is among the best firewalls around and it will protect even scripts that are not updated frequently because it can prevent attackers from using known exploits and security holes. Very comprehensive information about every intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the regular logs created by the Apache server, so you can later take a look at them and decide whether you need to take additional measures in order to improve the security of your script-driven sites.

ModSecurity in Cloud Hosting

ModSecurity comes standard with all cloud hosting plans which we offer and it shall be switched on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and disable it with simply a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to stop them. The log for each of your sites shall contain comprehensive information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules we use are constantly updated and include both commercial ones we get from a third-party security business and custom ones which our system admins add in case that they detect a new type of attacks. This way, the sites you host here shall be much more protected with no action required on your end.

ModSecurity in Semi-dedicated Servers

We've incorporated ModSecurity as a standard inside all semi-dedicated server products, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts shall permit you to activate or disable the firewall for any website with a mouse click. You will also be able to switch on a passive detection mode with which ModSecurity will keep a log of possible attacks without actually preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack caused, where it came from, and so on. The list of rules which we use is frequently updated as to match any new risks that might appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones that our administrators include in the event that they discover a threat that is not present in the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are provided with the Hepsia hosting CP, so your web apps shall be secured from the instant your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if needed, you'll be able to disable it with a click of your mouse through the corresponding section of Hepsia. You may also set it to work in detection mode, so it will keep an extensive log of any possible attacks without taking any action to stop them. The logs are available inside the same section and offer information about the nature of the attack, what IP address it originated from and what ModSecurity rule was triggered to stop it. For optimum security, we use not just commercial rules from a firm working in the field of web security, but also custom ones our administrators add personally in order to respond to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting Control Panel come with ModSecurity, so any application you upload or set up shall be secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. A separate section inside Hepsia will allow you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you will discover in the logs can easily allow you to to secure your Internet sites better - the IP address an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, and so forth. With this information, you can see if an Internet site needs an update, whether you should block IPs from accessing your server, and so forth. On top of the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too whenever they find a new threat that's not yet in the commercial bundle.