ModSecurity is a highly effective firewall for Apache web servers that is used to stop attacks towards web applications. It keeps track of the HTTP traffic to a given Internet site in real time and stops any intrusion attempts as soon as it detects them. The firewall uses a set of rules to do this - for example, trying to log in to a script admin area without success many times activates one rule, sending a request to execute a particular file that could result in accessing the website triggers a different rule, and so on. ModSecurity is among the best firewalls available and it will preserve even scripts that aren't updated regularly because it can prevent attackers from using known exploits and security holes. Very thorough information about every single intrusion attempt is recorded and the logs the firewall keeps are much more comprehensive than the regular logs provided by the Apache server, so you can later analyze them and determine if you need to take additional measures in order to improve the protection of your script-driven Internet sites.

ModSecurity in Hosting

ModSecurity is supplied with all hosting machines, so if you choose to host your Internet sites with our business, they'll be protected against a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you shall have to do on your end. You will be able to stop ModSecurity for any website if necessary, or to activate a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You shall be able to view detailed logs from your Hepsia CP including the IP where the attack originated from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the safety of our clients' websites seriously, we employ a collection of commercial rules that we get from one of the top firms that maintain this kind of rules. Our administrators also add custom rules to make sure that your sites will be protected against as many risks as possible.

ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity as a standard inside all semi-dedicated hosting packages, so your web apps will be protected whenever you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will allow you to enable or disable the firewall for any Internet site with a click. You'll also have the ability to switch on a passive detection mode in which ModSecurity shall maintain a log of possible attacks without actually preventing them. The thorough logs include the nature of the attack and what ModSecurity response this attack initiated, where it came from, etc. The list of rules which we use is regularly updated in order to match any new threats which may appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones that our admins add in case they find a threat that's not present in the commercial list yet.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting CP, so your web apps shall be protected from the second your server is in a position. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you can disable it with a click via the corresponding section of Hepsia. You may also set it to function in detection mode, so it will maintain an extensive log of any possible attacks without taking any action to prevent them. The logs can be found in the same section and provide info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For optimum security, we use not only commercial rules from a company operating in the field of web security, but also custom ones our admins add personally in order to respond to new threats which are still not addressed in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you'll not need to do anything specific on your end to employ it since it's enabled by default every time you include a new domain or subdomain on your server. If it interferes with some of your apps, you will be able to stop it through the respective part of Hepsia, or you can leave it operating in passive mode, so it shall identify attacks and will still maintain a log for them, but won't prevent them. You may examine the logs later to learn what you can do to enhance the safety of your websites as you shall find info such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, etcetera. The rules which we employ are commercial, thus they are constantly updated by a security firm, but to be on the safe side, our admins also add custom rules from time to time as to react to any new threats they have identified.