ModSecurity is an effective firewall for Apache web servers that's employed to stop attacks toward web applications. It monitors the HTTP traffic to a particular site in real time and prevents any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do that - for example, trying to log in to a script admin area unsuccessfully several times activates one rule, sending a request to execute a certain file that may result in gaining access to the Internet site triggers a different rule, etc. ModSecurity is among the best firewalls out there and it'll protect even scripts that aren't updated often because it can prevent attackers from employing known exploits and security holes. Very comprehensive info about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the conventional logs created by the Apache server, so you can later analyze them and determine whether you need to take more measures in order to increase the protection of your script-driven Internet sites.

ModSecurity in Website Hosting

ModSecurity can be found with every website hosting solution which we provide and it is activated by default for every domain or subdomain which you include through your Hepsia CP. If it interferes with any of your programs or you would like to disable it for some reason, you will be able to do that through the ModSecurity area of Hepsia with merely a click. You may also use a passive mode, so the firewall will identify possible attacks and maintain a log, but won't take any action. You can view extensive logs in the exact same section, including the IP where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For maximum protection of our customers we use a set of commercial firewall rules blended with custom ones which are added by our system admins.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer feature ModSecurity and given that the firewall is turned on by default, any Internet site which you set up under a domain or a subdomain shall be secured right away. An individual section within the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall enable you to stop and start the firewall for any Internet site or activate a detection mode. With the last option, ModSecurity won't take any action, but it will still detect possible attacks and will keep all data inside a log as if it were 100% active. The logs can be found in the exact same section of the CP and they offer information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so forth. The security rules which we employ on our web servers are a mix of commercial ones from a security firm and custom ones created by our system admins. As a result, we provide higher security for your web apps as we can defend them from attacks before security businesses release updates for completely new threats.

ModSecurity in VPS Servers

All VPS servers that are provided with the Hepsia CP include ModSecurity. The firewall is installed and turned on by default for all domains that are hosted on the server, so there won't be anything special that you'll have to do to protect your Internet sites. It will take you just a mouse click to stop ModSecurity if needed or to turn on its passive mode so that it records what occurs without taking any actions to prevent intrusions. You'll be able to look at the logs produced in passive or active mode through the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall employed to deal with it, and so forth. We employ a mixture of commercial and custom rules in order to make certain that ModSecurity shall stop as many risks as possible, thus boosting the security of your web applications as much as possible.

ModSecurity in Dedicated Servers

When you decide to host your sites on a dedicated server with the Hepsia Control Panel, your web applications shall be protected straight away because ModSecurity is provided with all Hepsia-based plans. You shall be able to regulate the firewall with ease and if necessary, you'll be able to turn it off or switch on its passive mode when it shall only keep a log of what's taking place without taking any action to prevent potential attacks. The logs which you can find within the exact same section of the Control Panel are really detailed and include details about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etc. This info will permit you to take measures and increase the security of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our administrators include every time they detect attacks which haven't yet been included inside the commercial pack.