ModSecurity is an efficient firewall for Apache web servers which is used to stop attacks towards web apps. It monitors the HTTP traffic to a particular site in real time and blocks any intrusion attempts the moment it detects them. The firewall relies on a set of rules to accomplish that - as an example, attempting to log in to a script administration area unsuccessfully a few times activates one rule, sending a request to execute a particular file which could result in getting access to the site triggers another rule, and so on. ModSecurity is one of the best firewalls available on the market and it'll protect even scripts that aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive information about every single intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the standard logs generated by the Apache server, so you may later take a look at them and determine whether you need to take additional measures in order to boost the safety of your script-driven Internet sites.

ModSecurity in Website Hosting

We offer ModSecurity with all website hosting plans, so your web applications will be resistant to harmful attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it via the respective section of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you shall discover inside Hepsia are quite detailed and feature info about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etcetera. We employ a range of commercial rules that are frequently updated, but sometimes our administrators add custom rules as well so as to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting packages and if you decide to host your Internet sites with us, there will not be anything special you will have to do as the firewall is turned on by default for all domains and subdomains that you add via your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a particular website or enable the so-called detection mode in which case the firewall will still function and record information, but won't do anything to stop possible attacks on your websites. Thorough logs will be readily available inside your Control Panel and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, and so on. We employ two types of rules on our servers - commercial ones from a company which operates in the field of web security, and custom ones that our admins often add to respond to newly identified threats on time.

ModSecurity in VPS

Safety is very important to us, so we set up ModSecurity on all virtual private servers that are set up with the Hepsia Control Panel as a standard. The firewall can be managed via a dedicated section inside Hepsia and is activated automatically when you include a new domain or create a subdomain, so you won't have to do anything personally. You'll also be able to disable it or activate the so-called detection mode, so it will maintain a log of potential attacks that you can later analyze, but won't stop them. The logs in both passive and active modes include details about the type of the attack and how it was eliminated, what IP address it came from and other valuable data which may help you to tighten the security of your websites by updating them or blocking IPs, for example. On top of the commercial rules we get for ModSecurity from a third-party security enterprise, we also employ our own rules because from time to time we discover specific attacks that aren't yet present inside the commercial pack. This way, we can boost the protection of your Virtual private server right away as opposed to awaiting an official update.

ModSecurity in Dedicated Hosting

All of our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any program you upload or install shall be properly secured from the very beginning and you will not need to stress about common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you'll find in the logs can help you to secure your Internet sites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, etcetera. With this information, you'll be able to see whether an Internet site needs an update, whether you need to block IPs from accessing your hosting server, etc. Aside from the third-party commercial security rules for ModSecurity we use, our admins add custom ones too every time they come across a new threat that's not yet in the commercial bundle.