ModSecurity is a highly effective firewall for Apache web servers that is used to stop attacks toward web apps. It tracks the HTTP traffic to a certain Internet site in real time and blocks any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to do this - for example, trying to log in to a script administration area unsuccessfully several times triggers one rule, sending a request to execute a specific file which could result in getting access to the Internet site triggers another rule, etcetera. ModSecurity is one of the best firewalls available and it'll secure even scripts that aren't updated on a regular basis since it can prevent attackers from employing known exploits and security holes. Very detailed data about every single intrusion attempt is recorded and the logs the firewall maintains are far more specific than the standard logs created by the Apache server, so you can later examine them and decide whether you need to take extra measures so as to improve the protection of your script-driven websites.

ModSecurity in Shared Web Hosting

ModSecurity comes by default with all shared web hosting packages that we offer and it shall be activated automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and disable it with only a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your websites will feature comprehensive info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are frequently updated and include both commercial ones that we get from a third-party security business and custom ones that our system administrators include in the event that they detect a new kind of attacks. In this way, the websites you host here shall be much more protected with no action expected on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions which we offer feature ModSecurity and because the firewall is turned on by default, any site you create under a domain or a subdomain shall be secured right from the start. An individual section within the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll permit you to start and stop the firewall for any website or enable a detection mode. With the latter, ModSecurity shall not take any action, but it'll still recognize possible attacks and shall keep all info inside a log as if it were completely active. The logs could be found in the very same section of the CP and they offer info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules which we employ on our machines are a mix between commercial ones from a security business and custom ones developed by our system administrators. As a result, we offer higher security for your web apps as we can protect them from attacks before security businesses release updates for new threats.

ModSecurity in VPS Web Hosting

All virtual private servers which are offered with the Hepsia CP include ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the server, so there shall not be anything special that you'll have to do to protect your Internet sites. It shall take you simply a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what occurs without taking any measures to stop intrusions. You'll be able to see the logs generated in active or passive mode via the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall employed to handle it, etc. We employ a mixture of commercial and custom rules so as to make certain that ModSecurity will block out as many risks as possible, hence enhancing the security of your web programs as much as possible.

ModSecurity in Dedicated Servers Hosting

When you opt to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web programs shall be protected straight away as ModSecurity is supplied with all Hepsia-based packages. You shall be able to control the firewall effortlessly and if necessary, you shall be able to turn it off or activate its passive mode when it'll only maintain a log of what is taking place without taking any action to stop potential attacks. The logs which you will find inside the exact same section of the CP are very detailed and feature data about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etcetera. This data shall enable you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our staff include whenever they recognize attacks which have not yet been included within the commercial pack.