ModSecurity is an effective firewall for Apache web servers that's employed to stop attacks against web applications. It monitors the HTTP traffic to a certain site in real time and prevents any intrusion attempts the instant it detects them. The firewall uses a set of rules to do that - as an example, trying to log in to a script administrator area unsuccessfully a few times activates one rule, sending a request to execute a particular file that could result in gaining access to the website triggers a different rule, and so forth. ModSecurity is amongst the best firewalls on the market and it will protect even scripts that aren't updated frequently since it can prevent attackers from using known exploits and security holes. Very comprehensive information about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the standard logs generated by the Apache server, so you may later take a look at them and determine whether you need to take extra measures in order to improve the security of your script-driven websites.

ModSecurity in Web Hosting

ModSecurity is supplied with all web hosting machines, so when you decide to host your sites with our firm, they will be protected against an array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any website if required, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You shall be able to view specific logs through your Hepsia CP including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the protection of our clients' websites very seriously, we use a selection of commercial rules that we get from one of the best companies which maintain such rules. Our administrators also add custom rules to make sure that your sites will be resistant to as many threats as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting packages and if you choose to host your sites with us, there shall not be anything special you'll need to do given that the firewall is switched on by default for all domains and subdomains which you add via your hosting CP. If necessary, you could disable ModSecurity for a given Internet site or activate the so-called detection mode in which case the firewall shall still work and record info, but won't do anything to stop possible attacks against your Internet sites. In depth logs will be available in your Control Panel and you will be able to see what sort of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, and so forth. We employ two kinds of rules on our servers - commercial ones from a business which operates in the field of web security, and custom made ones which our admins often include to respond to newly found risks on time.

ModSecurity in VPS Web Hosting

Safety is of the utmost importance to us, so we install ModSecurity on all virtual private servers that are set up with the Hepsia CP by default. The firewall could be managed via a dedicated section within Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you'll not need to do anything by hand. You will also be able to deactivate it or turn on the so-called detection mode, so it will maintain a log of potential attacks you can later analyze, but shall not prevent them. The logs in both passive and active modes contain details regarding the form of the attack and how it was stopped, what IP address it originated from and other useful info which may help you to tighten the security of your sites by updating them or blocking IPs, for instance. Beyond the commercial rules which we get for ModSecurity from a third-party security company, we also employ our own rules since once in a while we find specific attacks that are not yet present in the commercial pack. This way, we can enhance the protection of your Virtual private server immediately rather than waiting for a certified update.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any application you upload or set up will be secured from the very beginning and you won't need to concern yourself with common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to stop them. What you will find in the logs can help you to secure your Internet sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this data, you could see if an Internet site needs an update, whether you ought to block IPs from accessing your web server, and so on. Aside from the third-party commercial security rules for ModSecurity that we use, our admins include custom ones as well every time they discover a new threat which is not yet included in the commercial bundle.