ModSecurity is an efficient firewall for Apache web servers that is employed to prevent attacks against web apps. It monitors the HTTP traffic to a specific site in real time and stops any intrusion attempts the instant it discovers them. The firewall uses a set of rules to do that - for example, attempting to log in to a script administrator area unsuccessfully a few times sets off one rule, sending a request to execute a specific file which could result in getting access to the site triggers another rule, and so forth. ModSecurity is one of the best firewalls around and it'll preserve even scripts that are not updated often because it can prevent attackers from using known exploits and security holes. Very comprehensive data about every single intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the standard logs generated by the Apache server, so you can later examine them and determine if you need to take extra measures so as to improve the safety of your script-driven sites.

ModSecurity in Cloud Web Hosting

ModSecurity is supplied with all cloud web hosting machines, so when you choose to host your Internet sites with our company, they shall be shielded from a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you will have to do on your end. You'll be able to stop ModSecurity for any Internet site if required, or to activate a detection mode, so all activity will be recorded, but the firewall won't take any real action. You'll be able to view detailed logs through your Hepsia CP including the IP where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the security of our customers' Internet sites very seriously, we use a set of commercial rules that we take from one of the top firms that maintain such rules. Our admins also include custom rules to ensure that your websites shall be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

We have integrated ModSecurity by default in all semi-dedicated hosting packages, so your web apps will be protected whenever you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will permit you to activate or turn off the firewall for any website with a click. You shall also be able to activate a passive detection mode in which ModSecurity will maintain a log of possible attacks without actually preventing them. The thorough logs contain the nature of the attack and what ModSecurity response that attack generated, where it originated from, etcetera. The list of rules that we employ is frequently updated in order to match any new risks which could appear on the Internet and it features both commercial rules that we get from a security corporation and custom-written ones which our admins include in the event that they find a threat that is not present within the commercial list yet.

ModSecurity in VPS Hosting

All virtual private servers which are offered with the Hepsia CP come with ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the server, so there shall not be anything special that you shall have to do to protect your websites. It will take you simply a click to stop ModSecurity if required or to activate its passive mode so that it records what goes on without taking any steps to prevent intrusions. You'll be able to see the logs generated in passive or active mode through the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall used to deal with it, and so forth. We employ a combination of commercial and custom rules so as to make certain that ModSecurity shall block as many threats as possible, therefore enhancing the protection of your web applications as much as possible.

ModSecurity in Dedicated Web Hosting

If you opt to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web programs will be secured immediately since ModSecurity is available with all Hepsia-based plans. You'll be able to control the firewall easily and if needed, you shall be able to turn it off or enable its passive mode when it shall only keep a log of what is taking place without taking any action to prevent potential attacks. The logs which you can find in the same section of the CP are extremely detailed and include information about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so on. This info will enable you to take measures and improve the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our admins add when they identify attacks that haven't yet been included within the commercial pack.