ModSecurity is an efficient firewall for Apache web servers that's employed to stop attacks toward web applications. It monitors the HTTP traffic to a particular Internet site in real time and blocks any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to accomplish that - for instance, attempting to log in to a script administrator area unsuccessfully a few times activates one rule, sending a request to execute a particular file which could result in gaining access to the site triggers another rule, and so on. ModSecurity is one of the best firewalls available on the market and it will secure even scripts that aren't updated on a regular basis because it can prevent attackers from using known exploits and security holes. Very detailed information about every single intrusion attempt is recorded and the logs the firewall keeps are considerably more detailed than the standard logs generated by the Apache server, so you can later analyze them and decide whether you need to take more measures so as to increase the protection of your script-driven sites.

ModSecurity in Cloud Hosting

ModSecurity is available on all cloud hosting machines, so if you decide to host your websites with our firm, they shall be resistant to a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any Internet site if necessary, or to enable a detection mode, so all activity will be recorded, but the firewall won't take any real action. You will be able to view comprehensive logs using your Hepsia Control Panel including the IP address where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. As we take the safety of our customers' Internet sites seriously, we use a set of commercial rules which we get from one of the best companies which maintain such rules. Our admins also include custom rules to make sure that your sites shall be protected against as many risks as possible.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions that we offer include ModSecurity and because the firewall is turned on by default, any site that you set up under a domain or a subdomain will be protected straight away. An independent section within the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall enable you to stop and start the firewall for any website or activate a detection mode. With the latter, ModSecurity will not take any action, but it will still identify possible attacks and shall keep all data within a log as if it were completely active. The logs can be found within the exact same section of the CP and they offer information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules that we use on our web servers are a mix between commercial ones from a security business and custom ones developed by our system admins. As a result, we offer greater security for your web apps as we can shield them from attacks before security businesses release updates for new threats.

ModSecurity in VPS

ModSecurity is provided with all Hepsia-based virtual private servers which we offer and it will be turned on automatically for any new domain or subdomain that you add on the web server. That way, any web application you install will be protected from the very beginning without doing anything by hand on your end. The firewall can be handled via the section of the Control Panel that has the same name. This is the location in whichyou can switch off ModSecurity or enable its passive mode, so it won't take any action toward threats, but shall still keep a comprehensive log. The recorded data is available inside the same area as well and you'll be able to see what IPs any attacks originated from so that you block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules which we use on our servers are a mixture between commercial ones we obtain from a security organization and custom ones that are added by our staff to enhance the security of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

If you opt to host your sites on a dedicated server with the Hepsia Control Panel, your web programs shall be secured straight away since ModSecurity is available with all Hepsia-based packages. You shall be able to manage the firewall with ease and if required, you will be able to turn it off or enable its passive mode when it'll only keep a log of what's taking place without taking any action to stop potential attacks. The logs which you can find in the same section of the Control Panel are very detailed and include details about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so on. This information will permit you to take measures and boost the security of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our staff add whenever they detect attacks which have not yet been included within the commercial pack.