ModSecurity is an effective firewall for Apache web servers that's employed to stop attacks toward web applications. It tracks the HTTP traffic to a certain Internet site in real time and stops any intrusion attempts the moment it discovers them. The firewall uses a set of rules to accomplish that - as an illustration, trying to log in to a script administration area without success a few times sets off one rule, sending a request to execute a certain file which may result in gaining access to the site triggers a different rule, etcetera. ModSecurity is amongst the best firewalls available on the market and it'll secure even scripts which aren't updated regularly since it can prevent attackers from using known exploits and security holes. Quite comprehensive information about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the conventional logs generated by the Apache server, so you can later examine them and decide whether you need to take extra measures so as to enhance the security of your script-driven sites.

ModSecurity in Shared Hosting

We provide ModSecurity with all shared hosting packages, so your web apps shall be protected against destructive attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you shall be able to stop it via the respective part of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you shall find inside Hepsia are very detailed and include information about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, and so on. We use a range of commercial rules which are frequently updated, but sometimes our administrators include custom rules as well in order to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans that we offer feature ModSecurity and since the firewall is switched on by default, any site you build under a domain or a subdomain will be protected right from the start. An independent section within the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to start and stop the firewall for any website or enable a detection mode. With the last mentioned, ModSecurity won't take any action, but it'll still identify possible attacks and will keep all info inside a log as if it were completely active. The logs could be found inside the same section of the CP and they feature specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules which we use on our web servers are a mix between commercial ones from a security business and custom ones developed by our system admins. As a result, we provide higher security for your web applications as we can protect them from attacks before security corporations release updates for completely new threats.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are set up with our Hepsia CP and you'll not have to do anything specific on your end to employ it because it's switched on by default whenever you include a new domain or subdomain on your hosting server. If it interferes with some of your programs, you'll be able to stop it via the respective area of Hepsia, or you could leave it in passive mode, so it shall detect attacks and shall still maintain a log for them, but won't prevent them. You'll be able to examine the logs later to determine what you can do to boost the protection of your sites as you will find info such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity responded, etc. The rules that we employ are commercial, thus they are regularly updated by a security provider, but to be on the safe side, our staff also include custom rules from time to time in order to react to any new threats they have discovered.