ModSecurity is an efficient firewall for Apache web servers which is used to prevent attacks against web applications. It monitors the HTTP traffic to a particular Internet site in real time and prevents any intrusion attempts the moment it detects them. The firewall relies on a set of rules to do that - for instance, trying to log in to a script administrator area without success many times triggers one rule, sending a request to execute a particular file which may result in getting access to the site triggers a different rule, etc. ModSecurity is amongst the best firewalls available and it'll preserve even scripts that are not updated often since it can prevent attackers from using known exploits and security holes. Incredibly detailed information about every single intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the conventional logs provided by the Apache server, so you could later examine them and decide if you need to take additional measures so as to boost the protection of your script-driven Internet sites.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting solutions, so your Internet apps will be resistant to harmful attacks. The firewall is activated as standard for all domains and subdomains, but in case you'd like, you'll be able to stop it using the respective area of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you will find within Hepsia are extremely detailed and offer data about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, and so forth. We use a group of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to efficiently protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity as a standard inside all semi-dedicated server packages, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts shall permit you to enable or disable the firewall for any Internet site with a click. You'll also have the ability to switch on a passive detection mode through which ModSecurity will keep a log of potential attacks without actually preventing them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack generated, where it originated from, and so on. The list of rules that we employ is regularly updated as to match any new risks that may appear on the Internet and it comes with both commercial rules that we get from a security company and custom-written ones that our administrators include in case they find a threat that's not present within the commercial list yet.

ModSecurity in VPS Servers

ModSecurity is provided with all Hepsia-based VPS servers we offer and it'll be turned on automatically for every new domain or subdomain that you add on the server. This way, any web app that you install will be protected right from the start without doing anything personally on your end. The firewall can be handled from the section of the CP that has the same name. This is the area whereyou'll be able to switch off ModSecurity or enable its passive mode, so it won't take any action towards threats, but shall still keep a detailed log. The recorded information is available inside the same section as well and you will be able to see what IPs any attacks originated from so that you block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we use on our servers are a blend between commercial ones which we obtain from a security company and custom ones which are added by our administrators to maximize the security of any web applications hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain which you create on the hosting server. Just in case that a web application does not work correctly, you can either switch off the firewall or set it to work in passive mode. The latter means that ModSecurity shall maintain a log of any potential attack which might occur, but shall not take any action to stop it. The logs produced in passive or active mode shall present you with more details about the exact file which was attacked, the type of the attack and the IP address it originated from, etcetera. This info will enable you to decide what steps you can take to increase the safety of your websites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules that we employ are updated regularly with a commercial package from a third-party security enterprise we work with, but occasionally our staff include their own rules also when they discover a new potential threat.