ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks toward web applications. It tracks the HTTP traffic to a certain Internet site in real time and prevents any intrusion attempts the instant it identifies them. The firewall uses a set of rules to accomplish that - for example, trying to log in to a script admin area without success a few times activates one rule, sending a request to execute a certain file which could result in gaining access to the site triggers another rule, etcetera. ModSecurity is one of the best firewalls on the market and it will protect even scripts which are not updated regularly because it can prevent attackers from using known exploits and security holes. Very comprehensive information about each intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the conventional logs provided by the Apache server, so you could later analyze them and determine if you need to take additional measures in order to increase the security of your script-driven sites.

ModSecurity in Shared Hosting

ModSecurity is supplied with all shared hosting servers, so when you decide to host your Internet sites with our company, they will be protected against a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you shall have to do on your end. You will be able to stop ModSecurity for any website if required, or to enable a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs through your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. Since we take the protection of our customers' sites very seriously, we use a group of commercial rules which we take from one of the best companies that maintain this kind of rules. Our admins also include custom rules to make sure that your websites will be protected against as many risks as possible.

ModSecurity in Semi-dedicated Hosting

We have integrated ModSecurity by default inside all semi-dedicated hosting packages, so your web apps will be protected the instant you install them under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will permit you to activate or turn off the firewall for any Internet site with a mouse click. You'll also have the ability to turn on a passive detection mode with which ModSecurity shall maintain a log of potential attacks without actually preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack initiated, where it originated from, and so forth. The list of rules that we use is frequently updated as to match any new risks that could appear on the Internet and it comes with both commercial rules that we get from a security company and custom-written ones that our admins include in the event that they discover a threat which is not present within the commercial list yet.

ModSecurity in Dedicated Web Hosting

All our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any application which you upload or set up will be properly secured from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. A separate section inside Hepsia will permit you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you'll find in the logs can help you to secure your Internet sites better - the IP an attack came from, what website was attacked and how, what ModSecurity rule was triggered, etc. With this info, you could see if an Internet site needs an update, whether you need to block IPs from accessing your server, and so on. In addition to the third-party commercial security rules for ModSecurity we use, our admins add custom ones too whenever they discover a new threat which is not yet included in the commercial bundle.