ModSecurity is an efficient firewall for Apache web servers which is employed to stop attacks against web apps. It tracks the HTTP traffic to a specific website in real time and blocks any intrusion attempts as soon as it detects them. The firewall uses a set of rules to do this - for example, trying to log in to a script administration area unsuccessfully a few times sets off one rule, sending a request to execute a particular file which may result in getting access to the Internet site triggers a different rule, and so forth. ModSecurity is amongst the best firewalls out there and it will preserve even scripts that are not updated frequently because it can prevent attackers from employing known exploits and security holes. Quite comprehensive data about each intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the conventional logs created by the Apache server, so you could later examine them and determine whether you need to take extra measures in order to increase the safety of your script-driven sites.

ModSecurity in Cloud Hosting

ModSecurity comes standard with all cloud hosting packages that we offer and it shall be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you can activate and deactivate it with only a click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to stop them. The log for any of your Internet sites will feature detailed info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are constantly updated and include both commercial ones that we get from a third-party security business and custom ones which our system administrators add in the event that they detect a new kind of attacks. That way, the Internet sites you host here will be much more secure without any action required on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you choose to host your websites with us, there will not be anything special you will have to do as the firewall is turned on by default for all domains and subdomains that you add via your hosting CP. If required, you can disable ModSecurity for a particular website or activate the so-called detection mode in which case the firewall shall still work and record info, but shall not do anything to stop potential attacks against your Internet sites. Comprehensive logs will be available within your CP and you'll be able to see what sort of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so forth. We use two kinds of rules on our servers - commercial ones from an organization that operates in the field of web security, and customized ones which our admins occasionally include to respond to newly found threats on time.

ModSecurity in VPS Servers

Safety is essential to us, so we install ModSecurity on all VPS servers that are provided with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section in Hepsia and is switched on automatically when you add a new domain or create a subdomain, so you will not have to do anything personally. You will also be able to deactivate it or turn on the so-called detection mode, so it shall maintain a log of potential attacks that you can later examine, but shall not block them. The logs in both passive and active modes offer details regarding the kind of the attack and how it was stopped, what IP address it originated from and other valuable info that might help you to tighten the security of your websites by updating them or blocking IPs, as an example. Beyond the commercial rules we get for ModSecurity from a third-party security enterprise, we also employ our own rules as from time to time we identify specific attacks which aren't yet present in the commercial pack. This way, we could boost the protection of your Virtual private server immediately as opposed to waiting for a certified update.

ModSecurity in Dedicated Servers

All our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any program you upload or install shall be secured from the very beginning and you won't have to stress about common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you'll discover in the logs shall help you to secure your websites better - the IP an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, etcetera. With this info, you'll be able to see whether a website needs an update, if you need to block IPs from accessing your web server, etc. Aside from the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones too if they find a new threat which is not yet a part of the commercial bundle.