ModSecurity is an effective firewall for Apache web servers that is employed to prevent attacks toward web applications. It tracks the HTTP traffic to a certain website in real time and prevents any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to do that - as an example, attempting to log in to a script admin area without success a few times activates one rule, sending a request to execute a particular file that may result in accessing the site triggers a different rule, and so on. ModSecurity is among the best firewalls out there and it will preserve even scripts that aren't updated often since it can prevent attackers from using known exploits and security holes. Incredibly thorough info about each and every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the regular logs generated by the Apache server, so you may later analyze them and decide if you need to take extra measures so as to boost the safety of your script-driven websites.

ModSecurity in Web Hosting

We provide ModSecurity with all web hosting solutions, so your Internet applications shall be resistant to harmful attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you'll be able to stop it using the respective area of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you will find in Hepsia are extremely detailed and offer data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, and so on. We use a range of commercial rules which are regularly updated, but sometimes our admins add custom rules as well in order to efficiently protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer come with ModSecurity and given that the firewall is switched on by default, any Internet site which you build under a domain or a subdomain shall be protected right from the start. A separate section in the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall permit you to start and stop the firewall for any site or enable a detection mode. With the last mentioned, ModSecurity won't take any action, but it'll still recognize possible attacks and will keep all info within a log as if it were 100% active. The logs can be found within the same section of the Control Panel and they feature specifics about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules which we employ on our machines are a mix of commercial ones from a security business and custom ones made by our system admins. Consequently, we offer greater security for your web apps as we can protect them from attacks even before security businesses release updates for new threats.

ModSecurity in VPS Web Hosting

ModSecurity comes with all Hepsia-based virtual private servers we offer and it shall be turned on automatically for any new domain or subdomain that you include on the machine. That way, any web app that you install will be protected immediately without doing anything personally on your end. The firewall could be handled through the section of the CP that has the same name. This is the location whereyou can turn off ModSecurity or let its passive mode, so it won't take any action towards threats, but will still keep a detailed log. The recorded data is available within the same section as well and you shall be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules which we use on our servers are a mixture between commercial ones which we get from a security firm and custom ones that are included by our admins to optimize the security of any web applications hosted on our end.

ModSecurity in Dedicated Servers Hosting

When you opt to host your sites on a dedicated server with the Hepsia CP, your web apps shall be secured immediately as ModSecurity is provided with all Hepsia-based solutions. You will be able to control the firewall easily and if required, you'll be able to turn it off or enable its passive mode when it shall only maintain a log of what is occurring without taking any action to stop potential attacks. The logs that you'll find inside the same section of the Control Panel are quite detailed and contain information about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This info will allow you to take measures and boost the protection of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our administrators include when they detect attacks which haven't yet been included in the commercial pack.