ModSecurity is a highly effective firewall for Apache web servers that is used to prevent attacks toward web apps. It tracks the HTTP traffic to a certain Internet site in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to accomplish that - as an example, attempting to log in to a script admin area unsuccessfully several times activates one rule, sending a request to execute a particular file that may result in accessing the Internet site triggers a different rule, etc. ModSecurity is among the best firewalls around and it will secure even scripts that aren't updated frequently since it can prevent attackers from employing known exploits and security holes. Incredibly detailed data about every single intrusion attempt is recorded and the logs the firewall maintains are far more specific than the regular logs generated by the Apache server, so you could later analyze them and determine whether you need to take more measures in order to enhance the protection of your script-driven Internet sites.

ModSecurity in Hosting

We offer ModSecurity with all hosting packages, so your Internet apps shall be protected against malicious attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective area of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you will find inside Hepsia are very detailed and feature information about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, and so on. We use a group of commercial rules that are often updated, but sometimes our admins include custom rules as well so as to efficiently protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity as a standard inside all semi-dedicated hosting packages, so your web apps will be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to enable or disable the firewall for any Internet site with a click. You'll also be able to switch on a passive detection mode in which ModSecurity shall keep a log of possible attacks without actually preventing them. The comprehensive logs include things like the nature of the attack and what ModSecurity response that attack activated, where it came from, etcetera. The list of rules which we employ is frequently updated as to match any new threats which may appear on the Internet and it includes both commercial rules that we get from a security business and custom-written ones that our administrators add in the event that they discover a threat that is not present inside the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting CP, so your web applications will be secured from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if necessary, you could disable it with a click from the corresponding section of Hepsia. You could also set it to operate in detection mode, so it shall keep a detailed log of any potential attacks without taking any action to stop them. The logs can be found within the exact same section and provide information regarding the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not simply commercial rules from a business operating in the field of web security, but also custom ones that our administrators include manually in order to react to new risks which are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers Hosting

ModSecurity is offered by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain you create on the server. Just in case that a web app does not work adequately, you may either turn off the firewall or set it to work in passive mode. The latter means that ModSecurity will maintain a log of any possible attack that may take place, but will not take any action to prevent it. The logs created in active or passive mode shall offer you more details about the exact file that was attacked, the type of the attack and the IP it came from, etcetera. This data will enable you to choose what actions you can take to increase the protection of your sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules we employ are updated frequently with a commercial package from a third-party security firm we work with, but occasionally our staff add their own rules as well in the event that they come across a new potential threat.