ModSecurity is an effective firewall for Apache web servers that's used to stop attacks toward web apps. It monitors the HTTP traffic to a certain website in real time and prevents any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to do this - for instance, attempting to log in to a script administration area without success many times sets off one rule, sending a request to execute a particular file which may result in accessing the site triggers another rule, and so on. ModSecurity is one of the best firewalls available and it'll secure even scripts which are not updated regularly as it can prevent attackers from using known exploits and security holes. Quite thorough data about each intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the regular logs provided by the Apache server, so you can later analyze them and decide whether you need to take additional measures in order to increase the protection of your script-driven Internet sites.

ModSecurity in Shared Website Hosting

We offer ModSecurity with all shared website hosting solutions, so your web apps will be protected against malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you'll be able to stop it using the respective part of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will find in Hepsia are incredibly detailed and offer information about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, etcetera. We employ a range of commercial rules that are often updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our servers.

ModSecurity in Semi-dedicated Hosting

Any web app which you set up within your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall comes with all our hosting plans and is switched on by default for any domain and subdomain you add or create through your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated area in Hepsia where not simply could you activate or deactivate it fully, but you could also enable a passive mode, so the firewall shall not stop anything, but it will still maintain an archive of possible attacks. This takes only a mouse click and you shall be able to see the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, and so forth. The firewall employs two sets of rules on our machines - a commercial one that we get from a third-party web security provider and a custom one that our admins update manually as to respond to newly discovered risks as soon as possible.

ModSecurity in VPS Web Hosting

ModSecurity is pre-installed on all virtual private servers that are set up with the Hepsia hosting Control Panel, so your web apps will be secured from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if required, you could disable it with a click through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it'll keep an extensive log of any possible attacks without taking any action to prevent them. The logs can be found inside the very same section and provide details about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For best security, we employ not simply commercial rules from a firm working in the field of web security, but also custom ones which our admins include personally in order to respond to new threats which are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers Hosting

If you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web applications will be protected straight away because ModSecurity is available with all Hepsia-based plans. You shall be able to manage the firewall easily and if required, you shall be able to turn it off or activate its passive mode when it shall only keep a log of what is going on without taking any action to prevent potential attacks. The logs which you'll find inside the same section of the Control Panel are incredibly detailed and contain information about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so on. This data shall enable you to take measures and increase the security of your websites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our staff add whenever they detect attacks which haven't yet been included in the commercial pack.