ModSecurity is a powerful firewall for Apache web servers that's employed to stop attacks against web applications. It tracks the HTTP traffic to a particular Internet site in real time and prevents any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to accomplish that - for instance, attempting to log in to a script administrator area without success a few times activates one rule, sending a request to execute a particular file which could result in accessing the site triggers a different rule, and so forth. ModSecurity is among the best firewalls around and it will secure even scripts which aren't updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Very comprehensive information about every intrusion attempt is recorded and the logs the firewall maintains are much more specific than the conventional logs generated by the Apache server, so you may later analyze them and determine whether you need to take more measures so as to increase the protection of your script-driven Internet sites.

ModSecurity in Website Hosting

We offer ModSecurity with all website hosting packages, so your Internet apps shall be protected against harmful attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you'll find inside Hepsia are extremely detailed and offer information about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, and so on. We employ a group of commercial rules which are regularly updated, but sometimes our administrators add custom rules as well so as to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

We've included ModSecurity as a standard within all semi-dedicated hosting packages, so your web applications will be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts shall allow you to enable or disable the firewall for any Internet site with a mouse click. You shall also have the ability to switch on a passive detection mode through which ModSecurity will maintain a log of possible attacks without actually stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response that attack generated, where it came from, etc. The list of rules which we use is frequently updated in order to match any new threats that may appear on the Internet and it features both commercial rules that we get from a security corporation and custom-written ones that our admins include in case they discover a threat which is not present within the commercial list yet.

ModSecurity in VPS

Safety is of the utmost importance to us, so we install ModSecurity on all virtual private servers that are provided with the Hepsia CP as a standard. The firewall could be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you'll not need to do anything by hand. You will also be able to disable it or switch on the so-called detection mode, so it'll maintain a log of potential attacks that you can later study, but won't prevent them. The logs in both passive and active modes contain info about the kind of the attack and how it was eliminated, what IP it originated from and other important data which could help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. Beyond the commercial rules that we get for ModSecurity from a third-party security firm, we also implement our own rules since every now and then we find specific attacks which aren't yet present within the commercial group. That way, we can easily increase the protection of your Virtual private server in a timely manner rather than waiting for a certified update.

ModSecurity in Dedicated Hosting

ModSecurity is included with all dedicated servers that are integrated with our Hepsia CP and you won't need to do anything specific on your end to employ it because it is enabled by default whenever you include a new domain or subdomain on your web server. If it disrupts any of your apps, you'll be able to stop it through the respective part of Hepsia, or you could leave it in passive mode, so it shall detect attacks and will still keep a log for them, but will not prevent them. You'll be able to look at the logs later to learn what you can do to improve the protection of your sites as you will find details such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity reacted, etc. The rules which we employ are commercial, thus they are frequently updated by a security provider, but to be on the safe side, our staff also add custom rules every now and then as to deal with any new threats they have identified.