ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks toward web applications. It monitors the HTTP traffic to a particular website in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to do that - for instance, attempting to log in to a script administration area unsuccessfully many times activates one rule, sending a request to execute a particular file which may result in accessing the Internet site triggers a different rule, and so on. ModSecurity is among the best firewalls available and it'll preserve even scripts that are not updated on a regular basis since it can prevent attackers from using known exploits and security holes. Quite comprehensive data about every intrusion attempt is recorded and the logs the firewall maintains are much more specific than the standard logs provided by the Apache server, so you may later examine them and determine whether you need to take more measures in order to increase the security of your script-driven sites.

ModSecurity in Website Hosting

ModSecurity is supplied with all website hosting web servers, so when you decide to host your sites with our business, they will be shielded from an array of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you will have to do on your end. You shall be able to stop ModSecurity for any website if required, or to activate a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs through your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity handled the threat. Since we take the protection of our clients' sites seriously, we use a collection of commercial rules that we get from one of the best companies which maintain this type of rules. Our administrators also add custom rules to make sure that your websites will be protected against as many risks as possible.

ModSecurity in Semi-dedicated Hosting

We have integrated ModSecurity as a standard within all semi-dedicated hosting plans, so your web apps will be protected whenever you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will allow you to activate or turn off the firewall for any Internet site with a mouse click. You'll also have the ability to activate a passive detection mode in which ModSecurity will keep a log of possible attacks without really stopping them. The comprehensive logs include things like the nature of the attack and what ModSecurity response that attack triggered, where it originated from, etc. The list of rules that we use is constantly updated as to match any new risks that could appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones which our admins include in case they discover a threat that is not present inside the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting CP, so your web apps will be protected from the instant your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you'll be able to disable it with a click of your mouse through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it shall maintain an extensive log of any potential attacks without taking any action to prevent them. The logs are available within the exact same section and provide information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was activated to stop it. For optimum security, we employ not only commercial rules from a business working in the field of web security, but also custom ones which our admins include manually in order to respond to new threats which are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers which are set up with the Hepsia hosting Control Panel include ModSecurity, so any application that you upload or set up shall be protected from the very beginning and you won't need to bother about common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you shall discover in the logs shall allow you to to secure your Internet sites better - the IP address an attack came from, what website was attacked and how, what ModSecurity rule was triggered, etc. With this info, you could see whether an Internet site needs an update, if you ought to block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well every time they find a new threat that's not yet in the commercial bundle.