ModSecurity is a highly effective firewall for Apache web servers that's used to prevent attacks toward web applications. It monitors the HTTP traffic to a certain Internet site in real time and prevents any intrusion attempts the instant it identifies them. The firewall uses a set of rules to do that - as an example, attempting to log in to a script administration area without success a few times activates one rule, sending a request to execute a certain file which could result in accessing the site triggers another rule, and so on. ModSecurity is amongst the best firewalls available and it will secure even scripts that are not updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive data about each intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the conventional logs provided by the Apache server, so you can later take a look at them and decide whether you need to take additional measures so as to increase the security of your script-driven Internet sites.

ModSecurity in Cloud Web Hosting

ModSecurity is available with every single cloud web hosting package which we offer and it is switched on by default for any domain or subdomain which you add through your Hepsia CP. In case it disrupts any of your applications or you would like to disable it for some reason, you'll be able to accomplish that through the ModSecurity area of Hepsia with just a click. You could also enable a passive mode, so the firewall will identify possible attacks and keep a log, but will not take any action. You could view extensive logs in the same section, including the IP where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For optimum security of our customers we use a collection of commercial firewall rules mixed with custom ones that are added by our system admins.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity by default inside all semi-dedicated server plans, so your web applications will be protected the instant you set them up under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will permit you to enable or turn off the firewall for any site with a mouse click. You will also have the ability to switch on a passive detection mode through which ModSecurity will maintain a log of potential attacks without really stopping them. The detailed logs include the nature of the attack and what ModSecurity response this attack activated, where it came from, etcetera. The list of rules that we employ is regularly updated as to match any new risks that might appear on the Internet and it includes both commercial rules that we get from a security business and custom-written ones that our admins add if they find a threat which is not present inside the commercial list yet.

ModSecurity in VPS Servers

All VPS servers which are provided with the Hepsia Control Panel include ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the machine, so there will not be anything special which you'll have to do to protect your websites. It shall take you just a mouse click to stop ModSecurity if necessary or to activate its passive mode so that it records what happens without taking any steps to stop intrusions. You will be able to see the logs produced in active or passive mode through the corresponding section of Hepsia and find out more about the type of the attack, where it originated from, what rule the firewall employed to take care of it, and so on. We use a mix of commercial and custom rules in order to ensure that ModSecurity shall block as many risks as possible, therefore boosting the protection of your web programs as much as possible.

ModSecurity in Dedicated Servers

If you opt to host your websites on a dedicated server with the Hepsia Control Panel, your web apps will be protected immediately since ModSecurity is provided with all Hepsia-based plans. You'll be able to manage the firewall without difficulty and if needed, you'll be able to turn it off or enable its passive mode when it shall only keep a log of what is going on without taking any action to stop possible attacks. The logs which you'll find within the very same section of the CP are extremely detailed and contain details about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, etc. This information will allow you to take measures and enhance the protection of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our staff add when they detect attacks which have not yet been included inside the commercial pack.