ModSecurity is a highly effective firewall for Apache web servers that's used to stop attacks toward web applications. It tracks the HTTP traffic to a certain site in real time and prevents any intrusion attempts as soon as it identifies them. The firewall relies on a set of rules to do that - as an example, trying to log in to a script administration area unsuccessfully several times activates one rule, sending a request to execute a specific file which may result in getting access to the Internet site triggers a different rule, and so forth. ModSecurity is amongst the best firewalls out there and it'll protect even scripts that aren't updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Incredibly detailed info about every intrusion attempt is recorded and the logs the firewall keeps are considerably more specific than the conventional logs created by the Apache server, so you could later analyze them and decide if you need to take more measures so as to boost the protection of your script-driven websites.

ModSecurity in Cloud Website Hosting

ModSecurity comes standard with all cloud website hosting solutions which we supply and it shall be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has three different modes, so you could switch on and deactivate it with simply a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to stop them. The log for each of your websites will include comprehensive info such as the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are constantly updated and consist of both commercial ones which we get from a third-party security business and custom ones that our system administrators add in the event that they detect a new kind of attacks. In this way, the Internet sites you host here shall be much more secure without any action expected on your end.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting packages and if you decide to host your Internet sites with our company, there shall not be anything special you'll have to do since the firewall is switched on by default for all domains and subdomains that you add through your hosting CP. If needed, you'll be able to disable ModSecurity for a particular Internet site or enable the so-called detection mode in which case the firewall will still function and record information, but shall not do anything to stop possible attacks against your websites. Detailed logs shall be accessible within your Control Panel and you will be able to see what sort of attacks happened, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks came from, and so on. We use 2 kinds of rules on our servers - commercial ones from a company that operates in the field of web security, and custom ones that our admins sometimes add to respond to newly found threats promptly.

ModSecurity in VPS

Protection is vital to us, so we set up ModSecurity on all virtual private servers that are provided with the Hepsia CP by default. The firewall could be managed via a dedicated section inside Hepsia and is switched on automatically when you add a new domain or create a subdomain, so you will not have to do anything personally. You will also be able to deactivate it or activate the so-called detection mode, so it shall keep a log of potential attacks that you can later study, but won't stop them. The logs in both passive and active modes contain information about the type of the attack and how it was eliminated, what IP it originated from and other valuable data which may help you to tighten the security of your sites by updating them or blocking IPs, as an example. Besides the commercial rules that we get for ModSecurity from a third-party security company, we also employ our own rules as from time to time we discover specific attacks which aren't yet present within the commercial package. That way, we can easily enhance the protection of your Virtual private server immediately as opposed to awaiting a certified update.

ModSecurity in Dedicated Hosting

ModSecurity is offered as standard with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain which you create on the server. In the event that a web app doesn't function adequately, you may either turn off the firewall or set it to function in passive mode. The second means that ModSecurity shall keep a log of any possible attack that could take place, but shall not take any action to stop it. The logs created in active or passive mode shall give you more details about the exact file which was attacked, the form of the attack and the IP address it came from, etc. This information will permit you to determine what actions you can take to improve the protection of your websites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules we employ are updated constantly with a commercial pack from a third-party security provider we work with, but oftentimes our admins include their own rules as well if they discover a new potential threat.