ModSecurity is a powerful firewall for Apache web servers that's employed to prevent attacks toward web applications. It monitors the HTTP traffic to a given website in real time and prevents any intrusion attempts the instant it detects them. The firewall uses a set of rules to do this - for instance, attempting to log in to a script administrator area without success a few times triggers one rule, sending a request to execute a specific file that may result in gaining access to the site triggers another rule, etc. ModSecurity is amongst the best firewalls around and it'll secure even scripts which are not updated frequently because it can prevent attackers from employing known exploits and security holes. Very thorough info about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the standard logs generated by the Apache server, so you could later examine them and decide whether you need to take extra measures so as to boost the protection of your script-driven websites.

ModSecurity in Cloud Website Hosting

ModSecurity is available with every cloud website hosting package which we offer and it's turned on by default for every domain or subdomain which you add via your Hepsia Control Panel. If it disrupts any of your apps or you'd like to disable it for any reason, you will be able to do that through the ModSecurity section of Hepsia with simply a mouse click. You may also enable a passive mode, so the firewall will detect potential attacks and keep a log, but won't take any action. You can view detailed logs in the exact same section, including the IP address where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For maximum protection of our clients we use a collection of commercial firewall rules mixed with custom ones which are provided by our system administrators.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting plans and if you opt to host your Internet sites with our company, there will not be anything special you'll need to do since the firewall is turned on by default for all domains and subdomains that you add via your hosting Control Panel. If needed, you could disable ModSecurity for a certain Internet site or switch on the so-called detection mode in which case the firewall shall still work and record info, but shall not do anything to prevent potential attacks against your websites. Comprehensive logs shall be accessible in your Control Panel and you'll be able to see what sort of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so on. We employ two types of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom made ones which our administrators sometimes add to respond to newly found threats in a timely manner.

ModSecurity in VPS

ModSecurity is provided with all Hepsia-based virtual private servers we offer and it will be switched on automatically for any new domain or subdomain that you add on the hosting server. That way, any web app that you install shall be secured right from the start without doing anything manually on your end. The firewall could be managed from the section of the Control Panel which has the same name. This is the place whereyou'll be able to switch off ModSecurity or enable its passive mode, so it won't take any action towards threats, but will still keep a thorough log. The recorded info is available in the same area as well and you will be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules we employ on our servers are a mixture between commercial ones we obtain from a security organization and custom ones which are included by our staff to enhance the protection of any web applications hosted on our end.

ModSecurity in Dedicated Hosting

ModSecurity is available by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain which you create on the server. In the event that a web app doesn't function properly, you could either turn off the firewall or set it to function in passive mode. The latter means that ModSecurity shall maintain a log of any possible attack which may take place, but shall not take any action to prevent it. The logs generated in passive or active mode will offer you more details about the exact file which was attacked, the form of the attack and the IP it came from, etcetera. This info will permit you to decide what steps you can take to improve the safety of your websites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules which we employ are updated frequently with a commercial pack from a third-party security firm we work with, but from time to time our staff include their own rules as well if they identify a new potential threat.