ModSecurity is an efficient firewall for Apache web servers which is used to prevent attacks towards web apps. It monitors the HTTP traffic to a particular site in real time and prevents any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to accomplish that - for instance, attempting to log in to a script admin area without success many times sets off one rule, sending a request to execute a specific file which may result in gaining access to the Internet site triggers a different rule, and so on. ModSecurity is one of the best firewalls available on the market and it will protect even scripts which are not updated often since it can prevent attackers from using known exploits and security holes. Very comprehensive information about each and every intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the regular logs generated by the Apache server, so you may later examine them and decide if you need to take more measures so as to increase the safety of your script-driven websites.

ModSecurity in Website Hosting

ModSecurity is available with every single website hosting package which we provide and it is switched on by default for every domain or subdomain that you add via your Hepsia CP. In the event that it interferes with any of your applications or you would like to disable it for any reason, you will be able to do this through the ModSecurity section of Hepsia with simply a click. You may also enable a passive mode, so the firewall will detect possible attacks and keep a log, but will not take any action. You could see detailed logs in the exact same section, including the IP where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so on. For maximum protection of our clients we use a group of commercial firewall rules mixed with custom ones that are included by our system admins.

ModSecurity in Semi-dedicated Hosting

We have incorporated ModSecurity by default within all semi-dedicated hosting plans, so your web apps shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will allow you to enable or disable the firewall for any site with a click. You shall also have the ability to switch on a passive detection mode through which ModSecurity shall maintain a log of possible attacks without actually preventing them. The thorough logs include the nature of the attack and what ModSecurity response this attack activated, where it came from, and so forth. The list of rules we employ is constantly updated as to match any new risks which may appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones that our administrators include in the event that they find a threat which is not present inside the commercial list yet.

ModSecurity in VPS

All virtual private servers that are offered with the Hepsia Control Panel come with ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the web server, so there shall not be anything special that you shall have to do to protect your Internet sites. It'll take you simply a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what goes on without taking any steps to stop intrusions. You will be able to see the logs produced in passive or active mode through the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall employed to take care of it, etc. We employ a mix of commercial and custom rules in order to ensure that ModSecurity shall block out as many threats as possible, consequently improving the security of your web apps as much as possible.

ModSecurity in Dedicated Hosting

All our dedicated servers which are installed with the Hepsia hosting CP come with ModSecurity, so any app you upload or install will be protected from the very beginning and you will not have to concern yourself with common attacks or vulnerabilities. A separate section inside Hepsia will permit you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you'll find in the logs shall help you to secure your Internet sites better - the IP address an attack came from, what site was attacked and how, what ModSecurity rule was triggered, and so forth. With this information, you could see whether an Internet site needs an update, whether you should block IPs from accessing your server, and so on. Aside from the third-party commercial security rules for ModSecurity which we use, our administrators add custom ones as well whenever they find a new threat that's not yet in the commercial bundle.