ModSecurity is an effective firewall for Apache web servers which is employed to prevent attacks toward web apps. It monitors the HTTP traffic to a particular Internet site in real time and prevents any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to do this - for example, trying to log in to a script administration area unsuccessfully several times triggers one rule, sending a request to execute a certain file which could result in getting access to the Internet site triggers a different rule, etc. ModSecurity is amongst the best firewalls available and it'll preserve even scripts that aren't updated frequently as it can prevent attackers from employing known exploits and security holes. Quite comprehensive info about every intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the regular logs provided by the Apache server, so you can later examine them and determine if you need to take additional measures so as to boost the protection of your script-driven websites.

ModSecurity in Website Hosting

ModSecurity is provided with all website hosting servers, so if you choose to host your sites with our company, they shall be resistant to an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any site if required, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You'll be able to view comprehensive logs from your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the safety of our customers' websites seriously, we use a group of commercial rules which we take from one of the best companies that maintain this type of rules. Our admins also add custom rules to make certain that your websites shall be resistant to as many threats as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting packages and if you opt to host your Internet sites with us, there will not be anything special you will have to do as the firewall is turned on by default for all domains and subdomains you include through your hosting CP. If required, you can disable ModSecurity for a given Internet site or activate the so-called detection mode in which case the firewall shall still operate and record info, but won't do anything to stop potential attacks against your sites. In depth logs will be readily available in your Control Panel and you shall be able to see what sort of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so forth. We employ two sorts of rules on our servers - commercial ones from a company that operates in the field of web security, and custom ones which our admins sometimes include to respond to newly found risks promptly.

ModSecurity in VPS Hosting

All virtual private servers which are offered with the Hepsia Control Panel feature ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the web server, so there won't be anything special that you'll need to do to protect your websites. It'll take you a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what goes on without taking any measures to stop intrusions. You'll be able to view the logs created in passive or active mode from the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall used to tackle it, and so forth. We employ a mix of commercial and custom rules so as to make certain that ModSecurity will block as many threats as possible, consequently boosting the protection of your web apps as much as possible.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided by default with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain that you create on the hosting server. Just in case that a web application does not operate properly, you could either disable the firewall or set it to function in passive mode. The latter means that ModSecurity will keep a log of any possible attack which may occur, but won't take any action to stop it. The logs created in passive or active mode will provide you with additional details about the exact file which was attacked, the form of the attack and the IP it originated from, etcetera. This info will enable you to determine what actions you can take to enhance the protection of your websites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules which we use are updated frequently with a commercial package from a third-party security enterprise we work with, but occasionally our admins add their own rules too when they discover a new potential threat.