ModSecurity is an effective firewall for Apache web servers that's used to prevent attacks toward web applications. It keeps track of the HTTP traffic to a particular Internet site in real time and stops any intrusion attempts the moment it discovers them. The firewall uses a set of rules to accomplish that - for instance, trying to log in to a script administration area without success a few times sets off one rule, sending a request to execute a certain file that could result in accessing the Internet site triggers a different rule, and so on. ModSecurity is among the best firewalls available on the market and it will preserve even scripts which are not updated regularly because it can prevent attackers from using known exploits and security holes. Very detailed data about each intrusion attempt is recorded and the logs the firewall keeps are considerably more specific than the standard logs generated by the Apache server, so you may later examine them and decide if you need to take extra measures in order to boost the security of your script-driven websites.

ModSecurity in Website Hosting

ModSecurity is offered with each and every website hosting plan that we provide and it is switched on by default for every domain or subdomain that you include via your Hepsia Control Panel. If it interferes with any of your apps or you would like to disable it for whatever reason, you'll be able to do that through the ModSecurity area of Hepsia with just a mouse click. You can also activate a passive mode, so the firewall will discover potential attacks and maintain a log, but shall not take any action. You could see detailed logs in the exact same section, including the IP address where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etcetera. For maximum security of our customers we use a collection of commercial firewall rules mixed with custom ones which are provided by our system admins.

ModSecurity in Semi-dedicated Servers

Any web program you install in your new semi-dedicated server account will be protected by ModSecurity as the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain which you include or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity via a dedicated area inside Hepsia where not only could you activate or deactivate it fully, but you may also enable a passive mode, so the firewall shall not block anything, but it will still keep an archive of potential attacks. This requires just a mouse click and you will be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, etcetera. The firewall employs two sets of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one that our administrators update manually in order to respond to recently discovered threats as fast as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are set up with the Hepsia hosting CP, so your web apps shall be protected from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you could disable it with a mouse click from the corresponding section of Hepsia. You could also set it to function in detection mode, so it will maintain an extensive log of any potential attacks without taking any action to prevent them. The logs can be found inside the same section and provide information about the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For optimum security, we employ not just commercial rules from a company working in the field of web security, but also custom ones which our administrators include manually so as to react to new threats that are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers that are set up with the Hepsia hosting CP come with ModSecurity, so any program which you upload or set up shall be protected from the very beginning and you will not have to concern yourself with common attacks or vulnerabilities. A separate section inside Hepsia will allow you to start or stop the firewall for every domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you shall find in the logs shall allow you to to secure your Internet sites better - the IP an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, etc. With this info, you can see whether a website needs an update, if you should block IPs from accessing your web server, and so on. Besides the third-party commercial security rules for ModSecurity which we use, our admins include custom ones too if they come across a new threat which is not yet a part of the commercial bundle.