ModSecurity is a highly effective firewall for Apache web servers which is used to prevent attacks against web applications. It monitors the HTTP traffic to a given site in real time and prevents any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to do that - as an example, trying to log in to a script administrator area without success many times sets off one rule, sending a request to execute a specific file which could result in accessing the site triggers a different rule, etc. ModSecurity is amongst the best firewalls available and it will preserve even scripts which aren't updated regularly as it can prevent attackers from using known exploits and security holes. Incredibly thorough information about each and every intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the conventional logs generated by the Apache server, so you may later examine them and decide if you need to take additional measures so as to improve the protection of your script-driven sites.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting solutions, so your web apps shall be shielded from malicious attacks. The firewall is activated as standard for all domains and subdomains, but in case you would like, you will be able to stop it via the respective area of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you shall find inside Hepsia are quite detailed and feature info about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, and so on. We employ a group of commercial rules that are often updated, but sometimes our admins include custom rules as well in order to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you decide to host your websites with us, there won't be anything special you'll need to do since the firewall is turned on by default for all domains and subdomains you add through your hosting CP. If required, you could disable ModSecurity for a given site or activate the so-called detection mode in which case the firewall will still function and record data, but will not do anything to prevent possible attacks against your Internet sites. Detailed logs shall be readily available inside your CP and you shall be able to see which kind of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, etcetera. We employ two sorts of rules on our servers - commercial ones from a company which operates in the field of web security, and custom ones that our administrators often add to respond to newly found risks promptly.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers which are provided with the Hepsia hosting Control Panel, so your web applications will be protected from the instant your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if necessary, you could disable it with a click of your mouse through the corresponding section of Hepsia. You may also set it to work in detection mode, so it will keep a detailed log of any potential attacks without taking any action to prevent them. The logs are available inside the exact same section and provide info about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For maximum security, we use not just commercial rules from a business operating in the field of web security, but also custom ones that our admins include personally so as to respond to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity comes with all dedicated servers that are integrated with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it as it is enabled by default each time you include a new domain or subdomain on your web server. In the event that it disrupts any of your apps, you will be able to stop it through the respective area of Hepsia, or you could leave it working in passive mode, so it shall detect attacks and shall still maintain a log for them, but shall not block them. You could look at the logs later to determine what you can do to improve the security of your sites since you'll find information such as where an intrusion attempt came from, what website was attacked and based on what rule ModSecurity reacted, and so forth. The rules which we employ are commercial, thus they're regularly updated by a security firm, but to be on the safe side, our admins also include custom rules from time to time as to react to any new threats they have found.