ModSecurity is an efficient firewall for Apache web servers which is employed to stop attacks toward web apps. It tracks the HTTP traffic to a particular Internet site in real time and prevents any intrusion attempts as soon as it detects them. The firewall uses a set of rules to do this - for example, trying to log in to a script admin area unsuccessfully many times activates one rule, sending a request to execute a specific file that could result in gaining access to the website triggers another rule, and so forth. ModSecurity is one of the best firewalls available and it'll protect even scripts that are not updated on a regular basis as it can prevent attackers from using known exploits and security holes. Quite thorough info about each intrusion attempt is recorded and the logs the firewall keeps are considerably more comprehensive than the regular logs generated by the Apache server, so you can later take a look at them and decide whether you need to take additional measures in order to improve the security of your script-driven sites.

ModSecurity in Shared Website Hosting

We provide ModSecurity with all shared website hosting packages, so your web applications will be resistant to destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you would like, you shall be able to stop it through the respective part of your Hepsia CP. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you shall find within Hepsia are incredibly detailed and include data about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, and so forth. We use a group of commercial rules that are regularly updated, but sometimes our admins add custom rules as well so as to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

We have included ModSecurity by default in all semi-dedicated server products, so your web apps shall be protected the instant you install them under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts shall permit you to activate or disable the firewall for any website with a click. You will also be able to turn on a passive detection mode through which ModSecurity shall maintain a log of possible attacks without really stopping them. The thorough logs include things like the nature of the attack and what ModSecurity response that attack triggered, where it originated from, and so on. The list of rules which we employ is regularly updated in order to match any new risks that could appear on the Internet and it consists of both commercial rules that we get from a security corporation and custom-written ones which our admins add if they find a threat that is not present in the commercial list yet.

ModSecurity in VPS Servers

Security is vital to us, so we set up ModSecurity on all VPS servers which are set up with the Hepsia CP as a standard. The firewall could be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or generate a subdomain, so you won't have to do anything by hand. You shall also be able to deactivate it or switch on the so-called detection mode, so it will keep a log of possible attacks which you can later examine, but shall not block them. The logs in both passive and active modes contain details regarding the type of the attack and how it was prevented, what IP address it came from and other important information which might help you to tighten the security of your websites by updating them or blocking IPs, for example. On top of the commercial rules that we get for ModSecurity from a third-party security firm, we also employ our own rules since every now and then we detect specific attacks which are not yet present within the commercial package. That way, we can increase the protection of your Virtual private server in a timely manner as opposed to awaiting a certified update.

ModSecurity in Dedicated Servers

If you decide to host your websites on a dedicated server with the Hepsia CP, your web applications shall be secured right away as ModSecurity is available with all Hepsia-based packages. You shall be able to control the firewall effortlessly and if necessary, you'll be able to turn it off or enable its passive mode when it'll only maintain a log of what is occurring without taking any action to stop potential attacks. The logs which you can find in the same section of the Control Panel are incredibly detailed and feature details about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This information shall allow you to take measures and increase the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our administrators add whenever they recognize attacks that haven't yet been included inside the commercial pack.