ModSecurity is an effective firewall for Apache web servers that is employed to stop attacks against web apps. It monitors the HTTP traffic to a certain Internet site in real time and stops any intrusion attempts the instant it identifies them. The firewall uses a set of rules to accomplish that - as an illustration, trying to log in to a script administration area without success a few times activates one rule, sending a request to execute a particular file which could result in gaining access to the Internet site triggers another rule, and so forth. ModSecurity is among the best firewalls available and it will protect even scripts that are not updated regularly because it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive info about every single intrusion attempt is recorded and the logs the firewall maintains are much more specific than the regular logs created by the Apache server, so you may later examine them and decide if you need to take extra measures in order to increase the safety of your script-driven sites.

ModSecurity in Web Hosting

ModSecurity is offered with each and every web hosting solution which we provide and it is turned on by default for every domain or subdomain which you add via your Hepsia Control Panel. If it interferes with any of your programs or you'd like to disable it for any reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with simply a click. You could also use a passive mode, so the firewall will discover potential attacks and keep a log, but will not take any action. You'll be able to see extensive logs in the very same section, including the IP address where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, etcetera. For optimum security of our clients we use a collection of commercial firewall rules mixed with custom ones which are provided by our system admins.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you decide to host your sites with our company, there shall not be anything special you will have to do since the firewall is activated by default for all domains and subdomains that you include through your hosting Control Panel. If needed, you'll be able to disable ModSecurity for a certain website or activate the so-called detection mode in which case the firewall will still function and record information, but won't do anything to prevent possible attacks on your websites. Comprehensive logs will be accessible in your Control Panel and you shall be able to see which kind of attacks happened, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks came from, etc. We use two sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom ones which our administrators often add to respond to newly found threats in a timely manner.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers which we offer and it shall be activated automatically for any new domain or subdomain that you include on the server. This way, any web app which you install shall be secured from the very beginning without doing anything by hand on your end. The firewall can be managed via the section of the CP that bears the same name. This is the area in whichyou could turn off ModSecurity or enable its passive mode, so it will not take any action against threats, but will still maintain a thorough log. The recorded data is available within the same area as well and you shall be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules we use on our servers are a mix between commercial ones we get from a security company and custom ones which are included by our staff to optimize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers that are set up with our Hepsia CP and you will not have to do anything specific on your end to use it since it's activated by default whenever you include a new domain or subdomain on your server. In the event that it disrupts any of your apps, you'll be able to stop it via the respective area of Hepsia, or you may leave it operating in passive mode, so it shall detect attacks and will still maintain a log for them, but won't stop them. You can look at the logs later to learn what you can do to boost the security of your websites since you shall find info such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules that we employ are commercial, therefore they're constantly updated by a security provider, but to be on the safe side, our staff also include custom rules once in a while in order to react to any new threats they have found.