ModSecurity is a highly effective firewall for Apache web servers that's used to stop attacks toward web apps. It tracks the HTTP traffic to a given site in real time and prevents any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do that - as an example, trying to log in to a script administrator area without success several times triggers one rule, sending a request to execute a particular file that could result in accessing the Internet site triggers another rule, and so on. ModSecurity is among the best firewalls available on the market and it'll preserve even scripts that are not updated often as it can prevent attackers from employing known exploits and security holes. Quite thorough data about each intrusion attempt is recorded and the logs the firewall maintains are far more comprehensive than the regular logs provided by the Apache server, so you could later take a look at them and determine whether you need to take more measures so as to boost the safety of your script-driven Internet sites.

ModSecurity in Cloud Hosting

We provide ModSecurity with all cloud hosting plans, so your Internet applications shall be protected against destructive attacks. The firewall is switched on as standard for all domains and subdomains, but in case you would like, you shall be able to stop it through the respective part of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you'll find within Hepsia are extremely detailed and offer info about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, etcetera. We use a range of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans that we offer include ModSecurity and since the firewall is turned on by default, any site that you create under a domain or a subdomain shall be protected right from the start. An independent section inside the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll enable you to stop and start the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity shall not take any action, but it'll still recognize possible attacks and shall keep all data inside a log as if it were fully active. The logs could be found within the exact same section of the Control Panel and they include specifics about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules which we use on our web servers are a mix of commercial ones from a security company and custom ones made by our system administrators. Therefore, we offer greater security for your web applications as we can protect them from attacks before security companies release updates for completely new threats.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers we offer and it will be switched on automatically for any new domain or subdomain which you add on the web server. This way, any web application which you install shall be secured from the very beginning without doing anything by hand on your end. The firewall can be managed from the section of the Control Panel that has the same name. This is the location whereyou can turn off ModSecurity or activate its passive mode, so it shall not take any action against threats, but will still maintain a comprehensive log. The recorded information is available in the same section as well and you will be able to see what IPs any attacks came from so that you stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules we use on our servers are a combination between commercial ones which we get from a security organization and custom ones which are added by our staff to enhance the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is offered by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain which you create on the server. In the event that a web app does not function adequately, you can either switch off the firewall or set it to operate in passive mode. The latter means that ModSecurity shall maintain a log of any potential attack that might happen, but will not take any action to stop it. The logs produced in active or passive mode will present you with more details about the exact file that was attacked, the form of the attack and the IP it came from, etcetera. This info will allow you to choose what measures you can take to improve the safety of your Internet sites, such as blocking IPs or carrying out script and plugin updates. The ModSecurity rules which we use are updated constantly with a commercial pack from a third-party security company we work with, but sometimes our admins add their own rules also in the event that they discover a new potential threat.