ModSecurity is a highly effective firewall for Apache web servers that is used to stop attacks toward web applications. It keeps track of the HTTP traffic to a given site in real time and blocks any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to accomplish that - as an illustration, trying to log in to a script administrator area unsuccessfully a few times activates one rule, sending a request to execute a specific file that may result in accessing the website triggers another rule, and so forth. ModSecurity is one of the best firewalls available on the market and it will preserve even scripts which are not updated often as it can prevent attackers from employing known exploits and security holes. Quite comprehensive information about each intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the standard logs provided by the Apache server, so you may later analyze them and determine whether you need to take more measures in order to boost the safety of your script-driven websites.

ModSecurity in Cloud Hosting

ModSecurity comes standard with all cloud hosting solutions which we offer and it'll be switched on automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you could switch on and disable it with only a click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your websites will feature comprehensive info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are frequently updated and incorporate both commercial ones that we get from a third-party security firm and custom ones which our system admins add in the event that they detect a new kind of attacks. This way, the Internet sites you host here shall be much more protected without any action needed on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer include ModSecurity and because the firewall is switched on by default, any Internet site you build under a domain or a subdomain shall be protected straight away. A separate section inside the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it'll enable you to start and stop the firewall for any Internet site or activate a detection mode. With the latter, ModSecurity won't take any action, but it'll still detect possible attacks and will keep all data inside a log as if it were 100% active. The logs can be found within the very same section of the CP and they include info about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules which we use on our web servers are a mix between commercial ones from a security business and custom ones developed by our system administrators. For that reason, we provide increased security for your web applications as we can shield them from attacks before security firms release updates for brand new threats.

ModSecurity in VPS Hosting

ModSecurity comes with all Hepsia-based virtual private servers which we offer and it will be turned on automatically for any new domain or subdomain which you include on the hosting server. That way, any web application which you install will be protected immediately without doing anything personally on your end. The firewall could be managed from the section of the CP that bears the same name. This is the place in whichyou could switch off ModSecurity or enable its passive mode, so it won't take any action toward threats, but shall still keep a thorough log. The recorded data is available in the same section as well and you shall be able to see what IPs any attacks originated from so that you stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules we use on our servers are a mixture between commercial ones we get from a security organization and custom ones which are added by our staff to optimize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Web Hosting

All of our dedicated servers which are set up with the Hepsia hosting Control Panel include ModSecurity, so any app you upload or install shall be secured from the very beginning and you won't need to bother about common attacks or vulnerabilities. A separate section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you shall see in the logs can help you to secure your websites better - the IP address an attack came from, what website was attacked and how, what ModSecurity rule was triggered, and so on. With this information, you'll be able to see if a site needs an update, whether you need to block IPs from accessing your server, and so forth. Besides the third-party commercial security rules for ModSecurity which we use, our administrators add custom ones too if they find a new threat that is not yet a part of the commercial bundle.