ModSecurity is a highly effective firewall for Apache web servers that is used to prevent attacks toward web applications. It keeps track of the HTTP traffic to a particular site in real time and prevents any intrusion attempts the instant it identifies them. The firewall uses a set of rules to do this - as an example, attempting to log in to a script administration area unsuccessfully a few times sets off one rule, sending a request to execute a specific file which may result in gaining access to the site triggers a different rule, and so on. ModSecurity is one of the best firewalls around and it'll preserve even scripts that are not updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Quite detailed info about each intrusion attempt is recorded and the logs the firewall keeps are much more comprehensive than the conventional logs created by the Apache server, so you can later take a look at them and decide if you need to take extra measures in order to boost the protection of your script-driven websites.

ModSecurity in Shared Website Hosting

ModSecurity can be found with each shared website hosting plan that we provide and it is turned on by default for any domain or subdomain which you include through your Hepsia Control Panel. In the event that it disrupts any of your programs or you would like to disable it for whatever reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with only a click. You may also use a passive mode, so the firewall will identify possible attacks and keep a log, but shall not take any action. You could see extensive logs in the exact same section, including the IP address where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, etcetera. For optimum protection of our clients we use a set of commercial firewall rules blended with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web application that you set up inside your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is provided with all our hosting packages and is activated by default for any domain and subdomain which you add or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section inside Hepsia where not simply could you activate or deactivate it fully, but you may also activate a passive mode, so the firewall will not block anything, but it shall still maintain a record of potential attacks. This requires only a click and you'll be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, etc. The firewall uses 2 sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our admins update personally as to respond to recently discovered risks immediately.

ModSecurity in VPS Web Hosting

Protection is vital to us, so we set up ModSecurity on all virtual private servers that are made available with the Hepsia Control Panel by default. The firewall could be managed through a dedicated section within Hepsia and is activated automatically when you add a new domain or create a subdomain, so you will not have to do anything personally. You shall also be able to deactivate it or activate the so-called detection mode, so it will maintain a log of possible attacks that you can later examine, but will not prevent them. The logs in both passive and active modes contain info regarding the type of the attack and how it was prevented, what IP address it came from and other important info that could help you to tighten the security of your websites by updating them or blocking IPs, as an example. Beyond the commercial rules which we get for ModSecurity from a third-party security company, we also implement our own rules as once in a while we detect specific attacks that aren't yet present in the commercial pack. This way, we can easily enhance the protection of your VPS right away rather than waiting for an official update.

ModSecurity in Dedicated Servers Hosting

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia CP and you won't need to do anything specific on your end to use it because it is activated by default whenever you include a new domain or subdomain on your hosting server. If it interferes with any of your programs, you'll be able to stop it via the respective part of Hepsia, or you can leave it operating in passive mode, so it'll recognize attacks and will still maintain a log for them, but shall not stop them. You may examine the logs later to find out what you can do to increase the protection of your Internet sites as you'll find details such as where an intrusion attempt originated from, what website was attacked and based on what rule ModSecurity reacted, etc. The rules we use are commercial, hence they are frequently updated by a security provider, but to be on the safe side, our administrators also add custom rules once in a while in order to react to any new threats they have discovered.