ModSecurity is a highly effective firewall for Apache web servers that's employed to prevent attacks towards web applications. It monitors the HTTP traffic to a particular site in real time and prevents any intrusion attempts as soon as it detects them. The firewall uses a set of rules to accomplish that - as an illustration, trying to log in to a script admin area unsuccessfully many times activates one rule, sending a request to execute a certain file which may result in accessing the Internet site triggers another rule, and so on. ModSecurity is amongst the best firewalls available and it'll secure even scripts which are not updated regularly since it can prevent attackers from using known exploits and security holes. Very thorough data about every single intrusion attempt is recorded and the logs the firewall maintains are considerably more specific than the standard logs generated by the Apache server, so you can later examine them and decide whether you need to take more measures in order to boost the safety of your script-driven websites.

ModSecurity in Cloud Hosting

ModSecurity is offered with every cloud hosting solution which we offer and it is activated by default for any domain or subdomain which you add via your Hepsia Control Panel. If it interferes with any of your applications or you'd like to disable it for whatever reason, you'll be able to accomplish that through the ModSecurity section of Hepsia with just a click. You can also use a passive mode, so the firewall will detect possible attacks and keep a log, but shall not take any action. You can see comprehensive logs in the exact same section, including the IP where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, and so on. For max safety of our clients we use a set of commercial firewall rules mixed with custom ones which are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web application which you install inside your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is included with all our hosting plans and is activated by default for any domain and subdomain you include or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section in Hepsia where not only could you activate or deactivate it entirely, but you can also activate a passive mode, so the firewall will not stop anything, but it will still keep an archive of potential attacks. This normally requires only a mouse click and you'll be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall employs 2 sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our administrators update manually as to respond to recently discovered threats immediately.

ModSecurity in VPS Hosting

Protection is very important to us, so we install ModSecurity on all virtual private servers that are provided with the Hepsia CP by default. The firewall can be managed through a dedicated section within Hepsia and is activated automatically when you add a new domain or generate a subdomain, so you will not have to do anything by hand. You'll also be able to deactivate it or activate the so-called detection mode, so it shall keep a log of possible attacks which you can later examine, but shall not stop them. The logs in both passive and active modes include information regarding the kind of the attack and how it was prevented, what IP it originated from and other important data which might help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. Besides the commercial rules we get for ModSecurity from a third-party security company, we also implement our own rules as occasionally we find specific attacks which aren't yet present within the commercial group. This way, we could improve the protection of your VPS right away as opposed to waiting for a certified update.

ModSecurity in Dedicated Web Hosting

When you choose to host your Internet sites on a dedicated server with the Hepsia CP, your web applications shall be protected immediately as ModSecurity is available with all Hepsia-based packages. You will be able to regulate the firewall easily and if required, you shall be able to turn it off or activate its passive mode when it shall only maintain a log of what's taking place without taking any action to stop possible attacks. The logs which you will find inside the same section of the Control Panel are really detailed and feature info about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, and so forth. This information shall permit you to take measures and boost the security of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our administrators add every time they detect attacks which haven't yet been included within the commercial pack.