ModSecurity is an efficient firewall for Apache web servers which is used to stop attacks toward web apps. It monitors the HTTP traffic to a given website in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script administrator area without success several times triggers one rule, sending a request to execute a certain file that may result in gaining access to the site triggers another rule, and so on. ModSecurity is one of the best firewalls available on the market and it will preserve even scripts which aren't updated on a regular basis as it can prevent attackers from using known exploits and security holes. Very thorough data about each intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the standard logs generated by the Apache server, so you could later examine them and decide if you need to take extra measures in order to improve the protection of your script-driven Internet sites.

ModSecurity in Hosting

ModSecurity can be found with every hosting package that we offer and it is turned on by default for every domain or subdomain which you include through your Hepsia CP. If it interferes with any of your apps or you would like to disable it for some reason, you shall be able to do this through the ModSecurity section of Hepsia with only a mouse click. You may also activate a passive mode, so the firewall will detect possible attacks and maintain a log, but shall not take any action. You could see detailed logs in the same section, including the IP where the attack came from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For max security of our clients we use a set of commercial firewall rules blended with custom ones that are added by our system administrators.

ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity by default inside all semi-dedicated hosting products, so your web applications will be protected as soon as you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will permit you to enable or turn off the firewall for any website with a mouse click. You shall also have the ability to activate a passive detection mode through which ModSecurity will maintain a log of potential attacks without really stopping them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack generated, where it came from, etc. The list of rules that we use is regularly updated in order to match any new threats that could appear on the Internet and it features both commercial rules that we get from a security corporation and custom-written ones which our admins include in the event that they find a threat that is not present inside the commercial list yet.

ModSecurity in VPS

All virtual private servers which are offered with the Hepsia CP feature ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the web server, so there will not be anything special which you will have to do to protect your websites. It'll take you just a click to stop ModSecurity if necessary or to switch on its passive mode so that it records what goes on without taking any actions to prevent intrusions. You'll be able to view the logs generated in active or passive mode via the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall used to deal with it, and so forth. We use a mix of commercial and custom rules so as to make sure that ModSecurity shall block as many threats as possible, hence enhancing the protection of your web apps as much as possible.

ModSecurity in Dedicated Hosting

ModSecurity is included with all dedicated servers that are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it because it's enabled by default every time you include a new domain or subdomain on your hosting server. In the event that it disrupts any of your applications, you'll be able to stop it via the respective section of Hepsia, or you may leave it in passive mode, so it shall identify attacks and shall still maintain a log for them, but shall not block them. You may examine the logs later to learn what you can do to enhance the security of your websites since you'll find information such as where an intrusion attempt originated from, what website was attacked and based upon what rule ModSecurity reacted, etcetera. The rules which we use are commercial, therefore they're frequently updated by a security company, but to be on the safe side, our administrators also add custom rules once in a while as to react to any new threats they have discovered.