ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks toward web applications. It keeps track of the HTTP traffic to a certain website in real time and blocks any intrusion attempts the instant it detects them. The firewall uses a set of rules to accomplish that - for example, attempting to log in to a script administration area without success many times activates one rule, sending a request to execute a specific file that could result in getting access to the website triggers another rule, and so on. ModSecurity is one of the best firewalls on the market and it'll preserve even scripts that aren't updated often as it can prevent attackers from using known exploits and security holes. Very detailed information about every single intrusion attempt is recorded and the logs the firewall keeps are much more comprehensive than the conventional logs generated by the Apache server, so you may later examine them and determine if you need to take extra measures in order to improve the safety of your script-driven Internet sites.

ModSecurity in Hosting

ModSecurity comes standard with all hosting plans which we supply and it will be switched on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and deactivate it with just a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to stop them. The log for any of your Internet sites shall contain elaborate information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules we use are constantly updated and include both commercial ones that we get from a third-party security business and custom ones our system administrators include in case that they detect a new kind of attacks. This way, the websites that you host here will be a lot more secure with no action expected on your end.

ModSecurity in Semi-dedicated Servers

Any web application you install within your new semi-dedicated server account will be protected by ModSecurity as the firewall comes with all our hosting solutions and is switched on by default for any domain and subdomain that you add or create via your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated area inside Hepsia where not only could you activate or deactivate it fully, but you can also switch on a passive mode, so the firewall won't block anything, but it'll still keep a record of possible attacks. This requires simply a mouse click and you shall be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, etcetera. The firewall uses two groups of rules on our machines - a commercial one that we get from a third-party web security provider and a custom one which our administrators update manually as to respond to recently discovered risks as quickly as possible.

ModSecurity in VPS Servers

Security is vital to us, so we set up ModSecurity on all VPS servers that are set up with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section within Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you won't have to do anything personally. You'll also be able to deactivate it or switch on the so-called detection mode, so it shall maintain a log of possible attacks you can later examine, but will not stop them. The logs in both passive and active modes offer details about the kind of the attack and how it was eliminated, what IP address it originated from and other valuable info which could help you to tighten the security of your websites by updating them or blocking IPs, for instance. Besides the commercial rules we get for ModSecurity from a third-party security firm, we also implement our own rules since once in a while we find specific attacks which aren't yet present in the commercial group. This way, we could increase the security of your Virtual private server promptly rather than waiting for a certified update.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers which are set up with our Hepsia CP and you will not have to do anything specific on your end to use it because it is activated by default every time you include a new domain or subdomain on your hosting server. In the event that it disrupts any of your programs, you shall be able to stop it via the respective section of Hepsia, or you may leave it working in passive mode, so it will recognize attacks and will still maintain a log for them, but shall not prevent them. You could analyze the logs later to find out what you can do to enhance the safety of your Internet sites as you will find info such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, and so on. The rules we use are commercial, therefore they're constantly updated by a security provider, but to be on the safe side, our administrators also add custom rules once in a while as to deal with any new threats they have discovered.