ModSecurity is an effective firewall for Apache web servers which is used to stop attacks against web apps. It keeps track of the HTTP traffic to a particular website in real time and stops any intrusion attempts the instant it discovers them. The firewall uses a set of rules to accomplish that - for instance, trying to log in to a script admin area unsuccessfully a few times triggers one rule, sending a request to execute a particular file which may result in gaining access to the Internet site triggers another rule, and so forth. ModSecurity is among the best firewalls out there and it'll protect even scripts that are not updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Very comprehensive information about each and every intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the conventional logs generated by the Apache server, so you could later take a look at them and determine if you need to take extra measures so as to enhance the protection of your script-driven websites.

ModSecurity in Hosting

ModSecurity comes by default with all hosting plans which we supply and it'll be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has three different modes, so you could switch on and disable it with just a mouse click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your Internet sites shall feature in-depth info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are regularly updated and comprise of both commercial ones that we get from a third-party security firm and custom ones that our system admins include in the event that they detect a new type of attacks. That way, the websites that you host here will be much more secure without any action needed on your end.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you choose to host your sites with our company, there shall not be anything special you will have to do since the firewall is activated by default for all domains and subdomains you add through your hosting Control Panel. If required, you could disable ModSecurity for a given website or enable the so-called detection mode in which case the firewall shall still function and record information, but shall not do anything to prevent possible attacks against your websites. In depth logs shall be accessible within your Control Panel and you shall be able to see which kind of attacks happened, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from an organization which operates in the field of web security, and customized ones which our admins often include to respond to newly identified threats in a timely manner.

ModSecurity in VPS Web Hosting

Security is very important to us, so we install ModSecurity on all virtual private servers which are set up with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section inside Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you will not have to do anything personally. You shall also be able to deactivate it or turn on the so-called detection mode, so it'll keep a log of potential attacks which you can later analyze, but will not block them. The logs in both passive and active modes include details regarding the form of the attack and how it was stopped, what IP it originated from and other important info that might help you to tighten the security of your websites by updating them or blocking IPs, as an example. Besides the commercial rules which we get for ModSecurity from a third-party security company, we also implement our own rules since occasionally we find specific attacks which are not yet present in the commercial group. This way, we can boost the security of your VPS right away rather than waiting for a certified update.

ModSecurity in Dedicated Servers Hosting

When you choose to host your sites on a dedicated server with the Hepsia CP, your web applications shall be protected right away as ModSecurity is available with all Hepsia-based plans. You'll be able to regulate the firewall easily and if necessary, you'll be able to turn it off or switch on its passive mode when it shall only maintain a log of what is going on without taking any action to stop potential attacks. The logs that you can find within the very same section of the CP are very detailed and feature info about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, etcetera. This info shall allow you to take measures and improve the protection of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our administrators add every time they detect attacks that haven't yet been included within the commercial pack.