ModSecurity is an effective firewall for Apache web servers that's employed to prevent attacks against web apps. It keeps track of the HTTP traffic to a certain Internet site in real time and blocks any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to accomplish that - for example, trying to log in to a script admin area without success several times triggers one rule, sending a request to execute a particular file which could result in getting access to the Internet site triggers a different rule, and so on. ModSecurity is amongst the best firewalls available on the market and it'll protect even scripts that aren't updated frequently because it can prevent attackers from using known exploits and security holes. Quite comprehensive data about every single intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the conventional logs created by the Apache server, so you can later examine them and decide if you need to take additional measures in order to increase the security of your script-driven sites.

ModSecurity in Cloud Hosting

ModSecurity is available on all cloud hosting web servers, so when you choose to host your websites with our company, they will be protected against a wide range of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any Internet site if required, or to activate a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs using your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity handled the threat. Since we take the security of our clients' sites seriously, we use a set of commercial rules which we take from one of the best companies which maintain this sort of rules. Our administrators also include custom rules to make certain that your Internet sites shall be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you opt to host your Internet sites with us, there won't be anything special you'll need to do given that the firewall is turned on by default for all domains and subdomains that you add using your hosting CP. If needed, you could disable ModSecurity for a certain site or activate the so-called detection mode in which case the firewall shall still function and record info, but won't do anything to stop potential attacks on your websites. Thorough logs will be accessible within your CP and you shall be able to see which kind of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, and so forth. We use 2 sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and customized ones that our administrators often include to respond to newly discovered threats on time.

ModSecurity in VPS Servers

All VPS servers which are provided with the Hepsia CP feature ModSecurity. The firewall is installed and switched on by default for all domains which are hosted on the server, so there won't be anything special which you'll have to do to protect your sites. It shall take you only a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what happens without taking any steps to stop intrusions. You will be able to view the logs created in passive or active mode from the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall employed to handle it, etc. We use a mixture of commercial and custom rules so as to ensure that ModSecurity shall block out as many risks as possible, consequently enhancing the security of your web apps as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain which you create on the web server. In the event that a web app doesn't function adequately, you may either switch off the firewall or set it to function in passive mode. The second means that ModSecurity will keep a log of any possible attack which could take place, but won't take any action to stop it. The logs produced in active or passive mode will present you with more details about the exact file that was attacked, the form of the attack and the IP address it originated from, and so on. This data shall permit you to choose what measures you can take to increase the protection of your Internet sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules that we employ are updated frequently with a commercial bundle from a third-party security company we work with, but oftentimes our administrators add their own rules too in case they identify a new potential threat.