ModSecurity is a highly effective firewall for Apache web servers that's used to prevent attacks towards web applications. It tracks the HTTP traffic to a particular site in real time and stops any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to accomplish that - as an example, attempting to log in to a script admin area unsuccessfully several times activates one rule, sending a request to execute a certain file that may result in getting access to the site triggers a different rule, and so forth. ModSecurity is one of the best firewalls available and it'll secure even scripts that aren't updated often since it can prevent attackers from employing known exploits and security holes. Quite thorough information about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more specific than the standard logs provided by the Apache server, so you could later analyze them and decide if you need to take extra measures in order to boost the protection of your script-driven Internet sites.

ModSecurity in Cloud Web Hosting

ModSecurity is supplied with all cloud web hosting servers, so when you choose to host your websites with our organization, they will be shielded from an array of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you shall need to do on your end. You'll be able to stop ModSecurity for any site if needed, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You'll be able to view comprehensive logs via your Hepsia Control Panel including the IP address where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. Since we take the security of our customers' websites seriously, we use a set of commercial rules that we take from one of the top companies that maintain this kind of rules. Our admins also add custom rules to make certain that your sites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

We have incorporated ModSecurity by default inside all semi-dedicated server packages, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts will permit you to activate or disable the firewall for any website with a mouse click. You shall also be able to turn on a passive detection mode in which ModSecurity will keep a log of potential attacks without actually preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack triggered, where it originated from, and so forth. The list of rules that we use is regularly updated as to match any new threats that could appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones which our administrators include if they discover a threat that is not present within the commercial list yet.

ModSecurity in VPS Servers

All VPS servers which are provided with the Hepsia Control Panel feature ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the machine, so there will not be anything special that you'll need to do to protect your sites. It will take you a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what goes on without taking any actions to stop intrusions. You shall be able to view the logs generated in passive or active mode via the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to deal with it, etc. We use a mix of commercial and custom rules in order to make sure that ModSecurity shall prevent as many risks as possible, thus boosting the protection of your web apps as much as possible.

ModSecurity in Dedicated Servers

All our dedicated servers which are installed with the Hepsia hosting CP come with ModSecurity, so any application you upload or install will be protected from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will permit you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you shall find in the logs shall help you to secure your sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this information, you'll be able to see if a site needs an update, if you should block IPs from accessing your hosting server, etc. Besides the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well when they discover a new threat which is not yet included in the commercial bundle.