ModSecurity is an effective firewall for Apache web servers which is employed to prevent attacks toward web applications. It keeps track of the HTTP traffic to a given website in real time and stops any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script admin area without success several times activates one rule, sending a request to execute a particular file that could result in gaining access to the site triggers another rule, etcetera. ModSecurity is among the best firewalls on the market and it'll preserve even scripts that aren't updated often as it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive information about each intrusion attempt is recorded and the logs the firewall keeps are considerably more detailed than the conventional logs provided by the Apache server, so you may later examine them and decide if you need to take additional measures in order to increase the security of your script-driven sites.

ModSecurity in Web Hosting

We offer ModSecurity with all web hosting packages, so your web apps will be protected against harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you'd like, you will be able to stop it via the respective section of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will discover in Hepsia are extremely detailed and offer data about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so forth. We employ a set of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well in order to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer feature ModSecurity and because the firewall is enabled by default, any website that you create under a domain or a subdomain will be protected right from the start. A separate section inside the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it will enable you to start and stop the firewall for any Internet site or activate a detection mode. With the last mentioned, ModSecurity will not take any action, but it will still identify possible attacks and shall keep all info in a log as if it were completely active. The logs could be found inside the exact same section of the CP and they offer information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we employ on our machines are a mix of commercial ones from a security business and custom ones made by our system admins. For that reason, we provide greater security for your web applications as we can shield them from attacks even before security companies release updates for new threats.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are offered with the Hepsia hosting CP, so your web programs shall be protected from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if required, you can deactivate it with a click from the corresponding section of Hepsia. You could also set it to function in detection mode, so it shall maintain a detailed log of any potential attacks without taking any action to prevent them. The logs are available inside the very same section and include information regarding the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For maximum security, we use not simply commercial rules from a business operating in the field of web security, but also custom ones which our administrators include manually in order to respond to new threats which are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers Hosting

If you choose to host your sites on a dedicated server with the Hepsia CP, your web apps shall be secured straight away since ModSecurity is supplied with all Hepsia-based solutions. You will be able to regulate the firewall with ease and if needed, you shall be able to turn it off or enable its passive mode when it will only keep a log of what is happening without taking any action to stop potential attacks. The logs which you will find within the same section of the CP are very detailed and feature information about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This information shall enable you to take measures and enhance the protection of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our staff add every time they detect attacks that have not yet been included in the commercial pack.