ModSecurity is an effective firewall for Apache web servers that's employed to prevent attacks towards web apps. It monitors the HTTP traffic to a certain Internet site in real time and blocks any intrusion attempts the moment it discovers them. The firewall uses a set of rules to accomplish that - for example, trying to log in to a script administration area without success many times activates one rule, sending a request to execute a certain file that could result in gaining access to the site triggers a different rule, etcetera. ModSecurity is one of the best firewalls on the market and it will preserve even scripts that are not updated often since it can prevent attackers from employing known exploits and security holes. Quite comprehensive info about each and every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the regular logs generated by the Apache server, so you may later take a look at them and decide whether you need to take extra measures in order to improve the protection of your script-driven sites.

ModSecurity in Cloud Web Hosting

We offer ModSecurity with all cloud web hosting plans, so your web applications shall be protected against harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you will be able to stop it using the respective section of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you shall discover inside Hepsia are quite detailed and offer information about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so on. We use a range of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our servers.

ModSecurity in Semi-dedicated Servers

Any web app that you install within your new semi-dedicated server account shall be protected by ModSecurity because the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain which you include or create using your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area within Hepsia where not only could you activate or deactivate it entirely, but you can also enable a passive mode, so the firewall won't stop anything, but it will still maintain a record of potential attacks. This requires just a mouse click and you will be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, and so on. The firewall employs two sets of rules on our servers - a commercial one which we get from a third-party web security company and a custom one that our admins update manually in order to respond to recently discovered threats as fast as possible.

ModSecurity in VPS Servers

ModSecurity is included with all Hepsia-based VPS servers which we offer and it'll be turned on automatically for every new domain or subdomain you include on the web server. That way, any web app you install will be protected right from the start without doing anything manually on your end. The firewall could be handled through the section of the Control Panel that bears the same name. This is the area in whichyou'll be able to switch off ModSecurity or let its passive mode, so it won't take any action towards threats, but will still maintain a comprehensive log. The recorded information is available in the same section as well and you'll be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules we employ on our servers are a mixture between commercial ones which we obtain from a security firm and custom ones that are included by our administrators to maximize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers which are integrated with our Hepsia CP and you will not have to do anything specific on your end to employ it since it is enabled by default whenever you include a new domain or subdomain on your server. In case it disrupts some of your programs, you will be able to stop it through the respective part of Hepsia, or you may leave it in passive mode, so it'll identify attacks and shall still maintain a log for them, but won't prevent them. You'll be able to examine the logs later to find out what you can do to boost the protection of your Internet sites since you'll find information such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity reacted, and so forth. The rules we employ are commercial, hence they're regularly updated by a security provider, but to be on the safe side, our administrators also add custom rules every now and then as to react to any new threats they have found.