ModSecurity is a powerful firewall for Apache web servers that is employed to stop attacks against web applications. It tracks the HTTP traffic to a certain Internet site in real time and stops any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script administration area without success a few times activates one rule, sending a request to execute a certain file which could result in getting access to the website triggers a different rule, and so on. ModSecurity is among the best firewalls around and it'll preserve even scripts which are not updated frequently because it can prevent attackers from using known exploits and security holes. Quite detailed info about each intrusion attempt is recorded and the logs the firewall maintains are far more comprehensive than the conventional logs created by the Apache server, so you can later analyze them and determine if you need to take extra measures in order to enhance the safety of your script-driven websites.

ModSecurity in Shared Hosting

ModSecurity is available on all shared hosting machines, so if you decide to host your sites with our firm, they will be resistant to a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there will be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any website if needed, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You'll be able to view specific logs via your Hepsia CP including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity addressed the threat. Since we take the safety of our clients' sites very seriously, we employ a collection of commercial rules which we take from one of the best companies that maintain such rules. Our admins also include custom rules to make certain that your sites will be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

We've integrated ModSecurity by default in all semi-dedicated server packages, so your web apps will be protected the instant you install them under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will permit you to switch on or disable the firewall for any website with a mouse click. You'll also have the ability to turn on a passive detection mode with which ModSecurity will keep a log of potential attacks without actually stopping them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so on. The list of rules we use is constantly updated as to match any new threats which could appear on the Internet and it comes with both commercial rules that we get from a security business and custom-written ones that our administrators include in case they discover a threat which is not present in the commercial list yet.

ModSecurity in VPS Servers

Safety is vital to us, so we set up ModSecurity on all VPS servers which are provided with the Hepsia CP by default. The firewall can be managed through a dedicated section in Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you will not have to do anything personally. You shall also be able to deactivate it or switch on the so-called detection mode, so it'll keep a log of possible attacks which you can later analyze, but shall not stop them. The logs in both passive and active modes contain details regarding the kind of the attack and how it was prevented, what IP it originated from and other important info which might help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. On top of the commercial rules which we get for ModSecurity from a third-party security enterprise, we also implement our own rules because every now and then we detect specific attacks which aren't yet present in the commercial pack. This way, we can easily increase the protection of your VPS right away instead of awaiting a certified update.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting Control Panel include ModSecurity, so any app you upload or install shall be protected from the very beginning and you'll not need to concern yourself with common attacks or vulnerabilities. A separate section inside Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you'll see in the logs can easily enable you to to secure your Internet sites better - the IP address an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, and so on. With this data, you'll be able to see if a site needs an update, if you ought to block IPs from accessing your server, etc. On top of the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too when they come across a new threat which is not yet a part of the commercial bundle.