ModSecurity is an effective firewall for Apache web servers that is employed to prevent attacks against web applications. It monitors the HTTP traffic to a certain site in real time and blocks any intrusion attempts the instant it identifies them. The firewall uses a set of rules to accomplish that - as an illustration, trying to log in to a script administrator area unsuccessfully many times activates one rule, sending a request to execute a specific file that may result in gaining access to the site triggers another rule, and so on. ModSecurity is amongst the best firewalls on the market and it'll secure even scripts that are not updated frequently because it can prevent attackers from employing known exploits and security holes. Very comprehensive data about each and every intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the standard logs generated by the Apache server, so you could later take a look at them and determine whether you need to take extra measures in order to improve the safety of your script-driven websites.

ModSecurity in Cloud Hosting

We provide ModSecurity with all cloud hosting packages, so your web apps shall be protected against harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you would like, you shall be able to stop it through the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you will find within Hepsia are quite detailed and include info about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, and so forth. We employ a range of commercial rules which are constantly updated, but sometimes our administrators add custom rules as well in order to efficiently protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web app that you install inside your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain that you include or create through your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated area in Hepsia where not only could you activate or deactivate it entirely, but you can also switch on a passive mode, so the firewall won't stop anything, but it shall still maintain a record of possible attacks. This requires simply a click and you'll be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall employs 2 sets of rules on our servers - a commercial one that we get from a third-party web security provider and a custom one that our administrators update personally in order to respond to newly discovered risks as soon as possible.

ModSecurity in VPS

ModSecurity is included with all Hepsia-based virtual private servers we offer and it'll be activated automatically for every new domain or subdomain that you add on the web server. This way, any web app that you install will be protected right away without doing anything personally on your end. The firewall can be managed from the section of the Control Panel which has the same name. This is the place in whichyou'll be able to disable ModSecurity or activate its passive mode, so it won't take any action towards threats, but will still keep a thorough log. The recorded information is available within the same area as well and you will be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules which we use on our servers are a blend between commercial ones we obtain from a security firm and custom ones which are added by our admins to enhance the security of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

ModSecurity is available by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain you create on the hosting server. In the event that a web app does not work adequately, you may either turn off the firewall or set it to function in passive mode. The second means that ModSecurity shall maintain a log of any potential attack which might happen, but won't take any action to stop it. The logs created in passive or active mode will give you more details about the exact file which was attacked, the type of the attack and the IP address it came from, etcetera. This info will permit you to decide what actions you can take to improve the protection of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules which we use are updated regularly with a commercial pack from a third-party security firm we work with, but occasionally our staff add their own rules too in the event that they discover a new potential threat.