ModSecurity is a powerful firewall for Apache web servers which is used to prevent attacks towards web apps. It monitors the HTTP traffic to a particular Internet site in real time and prevents any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to do this - as an example, attempting to log in to a script administration area unsuccessfully several times sets off one rule, sending a request to execute a particular file which may result in accessing the Internet site triggers another rule, etc. ModSecurity is amongst the best firewalls on the market and it will secure even scripts which are not updated often since it can prevent attackers from employing known exploits and security holes. Very detailed information about each and every intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the standard logs created by the Apache server, so you can later take a look at them and decide if you need to take extra measures so as to boost the safety of your script-driven sites.

ModSecurity in Cloud Web Hosting

We offer ModSecurity with all cloud web hosting packages, so your web apps shall be shielded from destructive attacks. The firewall is activated as standard for all domains and subdomains, but in case you'd like, you'll be able to stop it via the respective part of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you will discover in Hepsia are quite detailed and feature information about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, and so forth. We use a set of commercial rules that are frequently updated, but sometimes our administrators add custom rules as well in order to efficiently protect the websites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting plans and if you opt to host your websites with us, there shall not be anything special you'll have to do as the firewall is switched on by default for all domains and subdomains you add through your hosting CP. If needed, you'll be able to disable ModSecurity for a given Internet site or turn on the so-called detection mode in which case the firewall will still work and record data, but shall not do anything to prevent potential attacks against your websites. Thorough logs shall be accessible in your CP and you will be able to see what sort of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so forth. We employ 2 sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and custom ones which our admins occasionally add to respond to newly found threats in a timely manner.

ModSecurity in VPS

ModSecurity is included with all Hepsia-based virtual private servers which we offer and it will be switched on automatically for any new domain or subdomain that you add on the machine. That way, any web app which you install will be secured right away without doing anything by hand on your end. The firewall can be managed from the section of the CP which has the same name. This is the location in whichyou could switch off ModSecurity or let its passive mode, so it shall not take any action toward threats, but will still maintain a comprehensive log. The recorded data is available in the same area as well and you shall be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules that we use on our servers are a blend between commercial ones we get from a security firm and custom ones which are added by our administrators to maximize the security of any web applications hosted on our end.

ModSecurity in Dedicated Hosting

ModSecurity comes with all dedicated servers which are set up with our Hepsia CP and you won't have to do anything specific on your end to employ it since it's switched on by default every time you include a new domain or subdomain on your hosting server. In case it disrupts some of your programs, you'll be able to stop it via the respective part of Hepsia, or you can leave it working in passive mode, so it shall recognize attacks and will still maintain a log for them, but won't stop them. You'll be able to look at the logs later to determine what you can do to improve the security of your Internet sites as you'll find info such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity responded, etc. The rules which we employ are commercial, hence they're constantly updated by a security company, but to be on the safe side, our admins also add custom rules every now and then in order to respond to any new threats they have found.