ModSecurity is a highly effective firewall for Apache web servers that is used to stop attacks towards web applications. It monitors the HTTP traffic to a certain site in real time and stops any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to accomplish that - as an example, trying to log in to a script admin area unsuccessfully many times sets off one rule, sending a request to execute a particular file that could result in gaining access to the website triggers a different rule, and so on. ModSecurity is among the best firewalls available on the market and it will protect even scripts which are not updated on a regular basis as it can prevent attackers from using known exploits and security holes. Incredibly detailed information about each intrusion attempt is recorded and the logs the firewall maintains are a lot more specific than the regular logs generated by the Apache server, so you can later analyze them and decide if you need to take extra measures so as to boost the safety of your script-driven sites.

ModSecurity in Shared Hosting

We provide ModSecurity with all shared hosting packages, so your Internet apps will be shielded from malicious attacks. The firewall is switched on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective area of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you will discover inside Hepsia are quite detailed and offer data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, etcetera. We employ a range of commercial rules that are constantly updated, but sometimes our admins add custom rules as well in order to better protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting plans that we offer come with ModSecurity and given that the firewall is switched on by default, any website which you build under a domain or a subdomain shall be secured right from the start. An individual section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it will permit you to stop and start the firewall for any website or enable a detection mode. With the last mentioned, ModSecurity shall not take any action, but it shall still recognize possible attacks and will keep all information inside a log as if it were completely active. The logs can be found in the exact same section of the CP and they offer info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules we employ on our machines are a mix of commercial ones from a security firm and custom ones created by our system admins. Consequently, we offer higher security for your web applications as we can defend them from attacks even before security firms release updates for brand new threats.

ModSecurity in VPS Hosting

All virtual private servers that are set up with the Hepsia Control Panel include ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the machine, so there will not be anything special that you'll have to do to protect your sites. It shall take you only a mouse click to stop ModSecurity if needed or to turn on its passive mode so that it records what goes on without taking any actions to stop intrusions. You shall be able to view the logs created in active or passive mode via the corresponding section of Hepsia and discover more about the form of the attack, where it came from, what rule the firewall used to handle it, etcetera. We use a mix of commercial and custom rules so as to make sure that ModSecurity will block out as many threats as possible, hence improving the protection of your web apps as much as possible.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided as standard with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain which you create on the server. In case that a web application doesn't operate adequately, you may either switch off the firewall or set it to operate in passive mode. The second means that ModSecurity shall keep a log of any potential attack that may happen, but will not take any action to prevent it. The logs created in passive or active mode shall provide you with more details about the exact file which was attacked, the type of the attack and the IP address it came from, and so forth. This data shall permit you to choose what actions you can take to boost the safety of your websites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we use are updated often with a commercial bundle from a third-party security company we work with, but sometimes our staff add their own rules too when they find a new potential threat.