ModSecurity is an effective firewall for Apache web servers that's employed to stop attacks against web apps. It tracks the HTTP traffic to a particular site in real time and prevents any intrusion attempts the moment it identifies them. The firewall uses a set of rules to accomplish that - for instance, attempting to log in to a script administrator area unsuccessfully a few times sets off one rule, sending a request to execute a certain file which could result in getting access to the Internet site triggers a different rule, etc. ModSecurity is one of the best firewalls available and it'll secure even scripts that aren't updated regularly since it can prevent attackers from employing known exploits and security holes. Quite thorough data about each intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the standard logs created by the Apache server, so you may later analyze them and decide if you need to take extra measures in order to increase the safety of your script-driven websites.

ModSecurity in Website Hosting

ModSecurity is offered with each and every website hosting plan which we offer and it's switched on by default for every domain or subdomain which you add via your Hepsia Control Panel. In case it disrupts any of your apps or you'd like to disable it for whatever reason, you shall be able to achieve that through the ModSecurity area of Hepsia with only a click. You could also activate a passive mode, so the firewall will discover possible attacks and keep a log, but shall not take any action. You could see detailed logs in the very same section, including the IP address where the attack came from, what precisely the attacker aimed to do and at what time, what ModSecurity did, and so on. For optimum safety of our clients we use a collection of commercial firewall rules mixed with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

We have incorporated ModSecurity as a standard within all semi-dedicated hosting packages, so your web apps shall be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will allow you to enable or turn off the firewall for any site with a mouse click. You'll also have the ability to switch on a passive detection mode in which ModSecurity will keep a log of potential attacks without really stopping them. The thorough logs include the nature of the attack and what ModSecurity response this attack caused, where it came from, etc. The list of rules we employ is constantly updated as to match any new threats that might appear on the Internet and it features both commercial rules that we get from a security business and custom-written ones that our administrators include if they discover a threat which is not present within the commercial list yet.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting CP, so your web programs shall be secured from the second your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you'll be able to deactivate it with a click of your mouse through the corresponding section of Hepsia. You may also set it to function in detection mode, so it will maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs can be found within the same section and provide info about the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For best security, we use not only commercial rules from a business working in the field of web security, but also custom ones which our admins include manually in order to respond to new risks that are still not tackled in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain which you create on the server. Just in case that a web application does not work correctly, you may either switch off the firewall or set it to work in passive mode. The latter means that ModSecurity will keep a log of any potential attack which might occur, but shall not take any action to prevent it. The logs produced in passive or active mode shall offer you additional details about the exact file that was attacked, the form of the attack and the IP address it came from, and so forth. This info shall enable you to choose what measures you can take to enhance the security of your Internet sites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules we use are updated constantly with a commercial package from a third-party security company we work with, but sometimes our admins include their own rules also if they discover a new potential threat.