ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks toward web applications. It monitors the HTTP traffic to a certain site in real time and blocks any intrusion attempts the instant it discovers them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script administration area without success a few times triggers one rule, sending a request to execute a particular file that could result in getting access to the Internet site triggers a different rule, etcetera. ModSecurity is amongst the best firewalls out there and it will preserve even scripts which are not updated on a regular basis because it can prevent attackers from using known exploits and security holes. Very thorough data about each and every intrusion attempt is recorded and the logs the firewall maintains are far more detailed than the standard logs generated by the Apache server, so you could later analyze them and decide whether you need to take additional measures in order to improve the security of your script-driven sites.

ModSecurity in Shared Hosting

We provide ModSecurity with all shared hosting packages, so your web apps shall be protected against malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it through the respective part of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you shall discover within Hepsia are incredibly detailed and include info about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, and so on. We use a set of commercial rules which are regularly updated, but sometimes our admins include custom rules as well in order to better protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer feature ModSecurity and since the firewall is switched on by default, any site you set up under a domain or a subdomain shall be protected straight away. An independent section inside the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it will allow you to start and stop the firewall for any site or enable a detection mode. With the latter, ModSecurity will not take any action, but it'll still detect possible attacks and will keep all info within a log as if it were 100% active. The logs could be found inside the very same section of the Control Panel and they include info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules that we employ on our web servers are a mix of commercial ones from a security company and custom ones created by our system admins. As a result, we offer greater security for your web applications as we can protect them from attacks before security corporations release updates for completely new threats.

ModSecurity in Dedicated Servers Hosting

ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you will not need to do anything specific on your end to employ it as it is turned on by default whenever you include a new domain or subdomain on your hosting server. In the event that it interferes with any of your apps, you will be able to stop it through the respective section of Hepsia, or you could leave it operating in passive mode, so it'll detect attacks and will still maintain a log for them, but will not block them. You'll be able to look at the logs later to find out what you can do to boost the protection of your Internet sites as you'll find details such as where an intrusion attempt originated from, what Internet site was attacked and based on what rule ModSecurity responded, etc. The rules which we use are commercial, thus they are regularly updated by a security firm, but to be on the safe side, our admins also include custom rules occasionally as to deal with any new threats they have found.