ModSecurity is a highly effective firewall for Apache web servers that is employed to prevent attacks towards web apps. It tracks the HTTP traffic to a specific site in real time and stops any intrusion attempts the instant it discovers them. The firewall uses a set of rules to accomplish that - for instance, attempting to log in to a script administrator area without success many times sets off one rule, sending a request to execute a particular file that may result in accessing the Internet site triggers another rule, and so on. ModSecurity is amongst the best firewalls available and it'll secure even scripts which are not updated on a regular basis because it can prevent attackers from using known exploits and security holes. Very thorough data about each intrusion attempt is recorded and the logs the firewall keeps are a lot more specific than the conventional logs created by the Apache server, so you could later examine them and determine whether you need to take additional measures so as to increase the safety of your script-driven websites.

ModSecurity in Cloud Hosting

ModSecurity is offered with every single cloud hosting plan that we offer and it's turned on by default for every domain or subdomain that you add through your Hepsia Control Panel. In the event that it disrupts any of your applications or you would like to disable it for any reason, you shall be able to accomplish that through the ModSecurity section of Hepsia with only a click. You could also activate a passive mode, so the firewall will discover potential attacks and keep a log, but will not take any action. You'll be able to view extensive logs in the same section, including the IP where the attack came from, what precisely the attacker tried to do and at what time, what ModSecurity did, and so on. For maximum protection of our customers we use a collection of commercial firewall rules blended with custom ones which are included by our system admins.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server packages which we offer come with ModSecurity and because the firewall is enabled by default, any site which you create under a domain or a subdomain will be secured immediately. An individual section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll enable you to stop and start the firewall for any website or switch on a detection mode. With the last option, ModSecurity won't take any action, but it'll still recognize possible attacks and will keep all info within a log as if it were fully active. The logs could be found inside the exact same section of the CP and they offer information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules that we use on our web servers are a mix of commercial ones from a security company and custom ones created by our system admins. As a result, we provide higher security for your web applications as we can shield them from attacks before security firms release updates for completely new threats.

ModSecurity in Dedicated Servers

All our dedicated servers that are set up with the Hepsia hosting CP feature ModSecurity, so any app you upload or install will be protected from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. An individual section in Hepsia will permit you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you shall see in the logs shall allow you to to secure your sites better - the IP address an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, and so on. With this info, you can see whether an Internet site needs an update, if you ought to block IPs from accessing your web server, etc. On top of the third-party commercial security rules for ModSecurity we use, our admins add custom ones as well every time they find a new threat which is not yet a part of the commercial bundle.