ModSecurity is a powerful firewall for Apache web servers that's used to prevent attacks toward web applications. It keeps track of the HTTP traffic to a certain website in real time and stops any intrusion attempts the instant it discovers them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script administration area without success a few times activates one rule, sending a request to execute a certain file which may result in accessing the website triggers a different rule, and so on. ModSecurity is one of the best firewalls available and it'll secure even scripts which are not updated regularly as it can prevent attackers from employing known exploits and security holes. Incredibly thorough info about each and every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the regular logs created by the Apache server, so you can later analyze them and determine if you need to take extra measures in order to enhance the safety of your script-driven sites.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting packages that we offer and it will be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has three different modes, so you could switch on and disable it with only a click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your websites shall feature elaborate info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are frequently updated and include both commercial ones we get from a third-party security company and custom ones that our system admins include in the event that they detect a new sort of attacks. In this way, the websites which you host here shall be much more protected with no action expected on your end.

ModSecurity in Semi-dedicated Servers

We have incorporated ModSecurity as a standard inside all semi-dedicated server plans, so your web applications shall be protected whenever you install them under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will permit you to activate or turn off the firewall for any site with a click. You will also be able to turn on a passive detection mode in which ModSecurity shall keep a log of potential attacks without really preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so forth. The list of rules that we use is constantly updated in order to match any new threats which could appear on the Internet and it comes with both commercial rules that we get from a security corporation and custom-written ones that our admins add in case they discover a threat which is not present inside the commercial list yet.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers we offer and it shall be switched on automatically for every new domain or subdomain that you include on the server. In this way, any web app you install shall be protected right from the start without doing anything personally on your end. The firewall can be managed through the section of the CP which bears the same name. This is the location in whichyou'll be able to turn off ModSecurity or enable its passive mode, so it won't take any action towards threats, but shall still keep a thorough log. The recorded data is available inside the same area as well and you shall be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules which we employ on our servers are a combination between commercial ones we get from a security company and custom ones which are included by our staff to optimize the protection of any web apps hosted on our end.

ModSecurity in Dedicated Servers

All our dedicated servers which are set up with the Hepsia hosting CP feature ModSecurity, so any application that you upload or install will be properly secured from the very beginning and you won't have to worry about common attacks or vulnerabilities. An independent section inside Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you shall discover in the logs shall allow you to to secure your sites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, and so forth. With this info, you'll be able to see if an Internet site needs an update, if you ought to block IPs from accessing your web server, etc. Besides the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well every time they find a new threat that's not yet in the commercial bundle.