ModSecurity is an effective firewall for Apache web servers that's employed to prevent attacks towards web apps. It monitors the HTTP traffic to a specific Internet site in real time and prevents any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to do that - as an illustration, trying to log in to a script administration area without success many times activates one rule, sending a request to execute a particular file which may result in gaining access to the site triggers another rule, and so on. ModSecurity is among the best firewalls available on the market and it will preserve even scripts which aren't updated on a regular basis since it can prevent attackers from using known exploits and security holes. Very comprehensive information about each intrusion attempt is recorded and the logs the firewall keeps are much more comprehensive than the regular logs generated by the Apache server, so you can later take a look at them and determine whether you need to take more measures so as to improve the protection of your script-driven sites.

ModSecurity in Cloud Web Hosting

ModSecurity can be found with every single cloud web hosting package which we offer and it is activated by default for every domain or subdomain which you add through your Hepsia Control Panel. In the event that it interferes with any of your applications or you would like to disable it for any reason, you shall be able to do that through the ModSecurity section of Hepsia with just a mouse click. You may also use a passive mode, so the firewall will detect potential attacks and maintain a log, but won't take any action. You can see detailed logs in the exact same section, including the IP where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, etc. For max security of our customers we use a collection of commercial firewall rules mixed with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Hosting

We've incorporated ModSecurity by default in all semi-dedicated hosting plans, so your web applications will be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will allow you to enable or disable the firewall for any Internet site with a click. You'll also be able to turn on a passive detection mode in which ModSecurity shall keep a log of potential attacks without actually preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack generated, where it originated from, and so forth. The list of rules that we use is regularly updated as to match any new threats that could appear on the Internet and it includes both commercial rules that we get from a security corporation and custom-written ones that our admins add if they discover a threat that's not present within the commercial list yet.

ModSecurity in VPS

ModSecurity comes with all Hepsia-based virtual private servers which we offer and it shall be switched on automatically for any new domain or subdomain that you include on the web server. That way, any web application you install shall be secured right away without doing anything manually on your end. The firewall may be managed via the section of the CP that bears the same name. This is the location in whichyou'll be able to turn off ModSecurity or activate its passive mode, so it won't take any action against threats, but will still keep a comprehensive log. The recorded information is available within the same area as well and you shall be able to see what IPs any attacks originated from to enable you to block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we use on our servers are a blend between commercial ones we get from a security organization and custom ones which are included by our admins to enhance the protection of any web apps hosted on our end.

ModSecurity in Dedicated Hosting

ModSecurity is included with all dedicated servers that are integrated with our Hepsia CP and you won't need to do anything specific on your end to use it as it is activated by default whenever you add a new domain or subdomain on your web server. In the event that it disrupts some of your apps, you will be able to stop it through the respective section of Hepsia, or you may leave it operating in passive mode, so it'll recognize attacks and will still maintain a log for them, but will not prevent them. You can examine the logs later to learn what you can do to boost the safety of your websites since you'll find information such as where an intrusion attempt originated from, what website was attacked and based upon what rule ModSecurity responded, etcetera. The rules which we employ are commercial, thus they're frequently updated by a security firm, but to be on the safe side, our staff also include custom rules once in a while as to respond to any new threats they have identified.