ModSecurity is a powerful firewall for Apache web servers that's used to stop attacks towards web applications. It monitors the HTTP traffic to a particular site in real time and stops any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do this - as an example, attempting to log in to a script admin area unsuccessfully several times triggers one rule, sending a request to execute a specific file that could result in gaining access to the site triggers another rule, etc. ModSecurity is one of the best firewalls available and it'll secure even scripts which are not updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Quite comprehensive info about each intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the regular logs created by the Apache server, so you can later examine them and decide whether you need to take additional measures so as to increase the protection of your script-driven Internet sites.

ModSecurity in Shared Website Hosting

ModSecurity comes standard with all shared website hosting plans which we supply and it'll be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to activate and deactivate it with only a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it'll not do anything to stop them. The log for any of your sites shall contain comprehensive info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules which we use are frequently updated and include both commercial ones which we get from a third-party security business and custom ones which our system admins add in case that they detect a new sort of attacks. This way, the websites you host here shall be a lot more secure without any action required on your end.

ModSecurity in Semi-dedicated Servers

We have integrated ModSecurity as a standard inside all semi-dedicated server packages, so your web apps will be protected as soon as you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts shall permit you to switch on or turn off the firewall for any Internet site with a click. You will also be able to activate a passive detection mode in which ModSecurity shall maintain a log of potential attacks without actually preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response that attack activated, where it originated from, etc. The list of rules which we use is frequently updated as to match any new risks which may appear on the Internet and it features both commercial rules that we get from a security business and custom-written ones that our administrators add in the event that they find a threat which is not present inside the commercial list yet.

ModSecurity in VPS Servers

Safety is of the utmost importance to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section inside Hepsia and is activated automatically when you add a new domain or generate a subdomain, so you won't need to do anything manually. You will also be able to disable it or turn on the so-called detection mode, so it'll maintain a log of potential attacks that you can later analyze, but won't block them. The logs in both passive and active modes include information regarding the type of the attack and how it was eliminated, what IP address it originated from and other important info which could help you to tighten the security of your websites by updating them or blocking IPs, for example. On top of the commercial rules which we get for ModSecurity from a third-party security company, we also use our own rules because from time to time we identify specific attacks which aren't yet present inside the commercial group. This way, we can improve the security of your Virtual private server in a timely manner rather than awaiting a certified update.

ModSecurity in Dedicated Servers

If you choose to host your websites on a dedicated server with the Hepsia CP, your web apps shall be protected right from the start since ModSecurity is available with all Hepsia-based packages. You shall be able to manage the firewall effortlessly and if necessary, you shall be able to turn it off or activate its passive mode when it'll only keep a log of what is occurring without taking any action to prevent potential attacks. The logs that you will find inside the very same section of the Control Panel are quite detailed and contain info about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so forth. This info will permit you to take measures and boost the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff include whenever they detect attacks that have not yet been included within the commercial pack.