ModSecurity is an efficient firewall for Apache web servers that's used to stop attacks toward web applications. It tracks the HTTP traffic to a particular Internet site in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to accomplish that - as an illustration, attempting to log in to a script administrator area unsuccessfully several times triggers one rule, sending a request to execute a certain file which could result in accessing the site triggers a different rule, etc. ModSecurity is among the best firewalls on the market and it'll preserve even scripts that are not updated frequently since it can prevent attackers from employing known exploits and security holes. Incredibly detailed data about every intrusion attempt is recorded and the logs the firewall maintains are considerably more specific than the conventional logs generated by the Apache server, so you could later take a look at them and determine if you need to take additional measures in order to increase the security of your script-driven websites.

ModSecurity in Cloud Web Hosting

ModSecurity is available with every cloud web hosting solution which we offer and it is turned on by default for every domain or subdomain which you add through your Hepsia CP. If it disrupts any of your apps or you would like to disable it for some reason, you'll be able to do this through the ModSecurity section of Hepsia with only a mouse click. You may also enable a passive mode, so the firewall will detect potential attacks and keep a log, but will not take any action. You could view comprehensive logs in the exact same section, including the IP where the attack originated from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etcetera. For optimum protection of our clients we use a set of commercial firewall rules mixed with custom ones which are provided by our system admins.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting solutions and if you decide to host your sites with us, there won't be anything special you'll have to do given that the firewall is turned on by default for all domains and subdomains which you add via your hosting CP. If required, you can disable ModSecurity for a particular site or enable the so-called detection mode in which case the firewall will still function and record info, but shall not do anything to prevent possible attacks against your Internet sites. Detailed logs will be accessible within your Control Panel and you'll be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, and so forth. We use 2 types of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones that our administrators sometimes add to respond to newly identified risks in a timely manner.

ModSecurity in VPS Web Hosting

ModSecurity is included with all Hepsia-based virtual private servers that we offer and it will be turned on automatically for any new domain or subdomain you include on the server. That way, any web app that you install will be protected immediately without doing anything manually on your end. The firewall could be managed from the section of the Control Panel which has the same name. This is the area whereyou can switch off ModSecurity or let its passive mode, so it won't take any action toward threats, but shall still keep a thorough log. The recorded data is available in the same section as well and you'll be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules that we use on our servers are a mixture between commercial ones that we get from a security company and custom ones that are included by our staff to enhance the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers Hosting

When you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web apps will be protected immediately since ModSecurity is available with all Hepsia-based solutions. You'll be able to manage the firewall easily and if necessary, you will be able to turn it off or activate its passive mode when it'll only maintain a log of what is occurring without taking any action to prevent possible attacks. The logs which you can find inside the exact same section of the CP are extremely detailed and feature info about the attacker IP, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etcetera. This information will enable you to take measures and increase the security of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our admins include every time they identify attacks which haven't yet been included in the commercial pack.