ModSecurity is an effective firewall for Apache web servers which is employed to stop attacks against web apps. It keeps track of the HTTP traffic to a specific Internet site in real time and blocks any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to accomplish that - as an example, attempting to log in to a script administrator area without success a few times sets off one rule, sending a request to execute a specific file which could result in gaining access to the site triggers a different rule, and so on. ModSecurity is one of the best firewalls available and it will preserve even scripts that aren't updated frequently because it can prevent attackers from employing known exploits and security holes. Very comprehensive information about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the standard logs generated by the Apache server, so you may later examine them and determine if you need to take additional measures in order to boost the protection of your script-driven sites.

ModSecurity in Cloud Website Hosting

ModSecurity is offered with each and every cloud website hosting solution which we provide and it is activated by default for any domain or subdomain that you include via your Hepsia Control Panel. In case it disrupts any of your apps or you'd like to disable it for whatever reason, you will be able to achieve that through the ModSecurity area of Hepsia with merely a click. You can also activate a passive mode, so the firewall will recognize possible attacks and keep a log, but won't take any action. You'll be able to see extensive logs in the very same section, including the IP address where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, etc. For maximum security of our customers we use a group of commercial firewall rules blended with custom ones that are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

Any web program that you set up inside your new semi-dedicated server account will be protected by ModSecurity because the firewall comes with all our hosting plans and is switched on by default for any domain and subdomain you include or create via your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not simply could you activate or deactivate it completely, but you could also activate a passive mode, so the firewall shall not block anything, but it shall still keep a record of potential attacks. This normally requires simply a mouse click and you shall be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, etc. The firewall uses two groups of rules on our machines - a commercial one which we get from a third-party web security firm and a custom one that our admins update personally in order to respond to recently discovered threats as quickly as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting Control Panel, so your web apps will be secured from the moment your server is in a position. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you could deactivate it with a click of your mouse through the corresponding section of Hepsia. You can also set it to operate in detection mode, so it'll maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs can be found inside the very same section and provide information about the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For best security, we employ not only commercial rules from a business working in the field of web security, but also custom ones that our administrators add personally in order to respond to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are set up with our Hepsia Control Panel and you will not have to do anything specific on your end to employ it because it's switched on by default each time you include a new domain or subdomain on your web server. If it interferes with any of your applications, you shall be able to stop it via the respective part of Hepsia, or you could leave it working in passive mode, so it'll identify attacks and will still maintain a log for them, but shall not block them. You can examine the logs later to find out what you can do to boost the protection of your sites as you'll find info such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity responded, etc. The rules that we use are commercial, thus they're regularly updated by a security company, but to be on the safe side, our admins also include custom rules occasionally as to react to any new threats they have found.