ModSecurity is a highly effective firewall for Apache web servers which is used to prevent attacks toward web applications. It keeps track of the HTTP traffic to a given site in real time and prevents any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to accomplish that - for instance, attempting to log in to a script administration area without success many times triggers one rule, sending a request to execute a specific file that may result in gaining access to the Internet site triggers another rule, and so forth. ModSecurity is amongst the best firewalls available on the market and it will preserve even scripts that are not updated often since it can prevent attackers from using known exploits and security holes. Very thorough information about every single intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the standard logs generated by the Apache server, so you could later analyze them and decide if you need to take additional measures so as to increase the protection of your script-driven sites.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting packages which we provide and it'll be turned on automatically for any domain or subdomain that you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you can activate and disable it with a click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your websites shall feature detailed information such as the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are frequently updated and incorporate both commercial ones we get from a third-party security company and custom ones which our system admins include in case that they detect a new type of attacks. This way, the Internet sites you host here shall be a lot more protected without any action expected on your end.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you choose to host your Internet sites with us, there will not be anything special you'll need to do given that the firewall is turned on by default for all domains and subdomains you add via your hosting Control Panel. If required, you'll be able to disable ModSecurity for a particular Internet site or switch on the so-called detection mode in which case the firewall shall still function and record information, but won't do anything to stop potential attacks against your Internet sites. Detailed logs shall be accessible inside your Control Panel and you shall be able to see what sort of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks originated from, etc. We use 2 sorts of rules on our servers - commercial ones from a company which operates in the field of web security, and custom made ones which our admins sometimes add to respond to newly discovered threats promptly.

ModSecurity in VPS Servers

ModSecurity is provided with all Hepsia-based VPS servers we offer and it'll be activated automatically for every new domain or subdomain you include on the web server. This way, any web app that you install shall be protected from the very beginning without doing anything manually on your end. The firewall can be managed through the section of the CP that has the same name. This is the area whereyou could disable ModSecurity or enable its passive mode, so it won't take any action toward threats, but will still maintain a comprehensive log. The recorded information is available in the same section as well and you shall be able to see what IPs any attacks originated from to enable you to stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules we employ on our servers are a mixture between commercial ones which we get from a security company and custom ones that are included by our admins to enhance the protection of any web apps hosted on our end.

ModSecurity in Dedicated Servers

All our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any application which you upload or set up will be protected from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. A separate section inside Hepsia will enable you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you'll find in the logs can help you to secure your Internet sites better - the IP an attack came from, what site was attacked and how, what ModSecurity rule was triggered, and so on. With this info, you'll be able to see whether a website needs an update, if you need to block IPs from accessing your server, etc. In addition to the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too whenever they come across a new threat which is not yet included in the commercial bundle.