ModSecurity is an efficient firewall for Apache web servers which is employed to prevent attacks towards web applications. It keeps track of the HTTP traffic to a particular website in real time and stops any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to do that - as an illustration, attempting to log in to a script administrator area unsuccessfully a few times activates one rule, sending a request to execute a specific file which could result in accessing the site triggers a different rule, etc. ModSecurity is amongst the best firewalls out there and it'll preserve even scripts that are not updated regularly as it can prevent attackers from using known exploits and security holes. Quite detailed information about each intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the regular logs provided by the Apache server, so you could later examine them and decide if you need to take additional measures in order to boost the protection of your script-driven Internet sites.

ModSecurity in Cloud Website Hosting

We offer ModSecurity with all cloud website hosting plans, so your Internet apps shall be shielded from malicious attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you'll be able to stop it through the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you shall discover within Hepsia are quite detailed and feature information about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etc. We employ a group of commercial rules which are frequently updated, but sometimes our administrators include custom rules as well so as to better protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

We have integrated ModSecurity by default inside all semi-dedicated server products, so your web apps shall be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will permit you to activate or turn off the firewall for any site with a mouse click. You shall also be able to switch on a passive detection mode with which ModSecurity shall maintain a log of potential attacks without really stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack generated, where it came from, etc. The list of rules we use is regularly updated as to match any new threats which might appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones which our administrators include if they find a threat that's not present inside the commercial list yet.

ModSecurity in VPS Servers

All VPS servers which are set up with the Hepsia Control Panel include ModSecurity. The firewall is set up and activated by default for all domains that are hosted on the server, so there will not be anything special which you will have to do to protect your websites. It will take you a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what occurs without taking any steps to stop intrusions. You will be able to see the logs generated in passive or active mode through the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall employed to tackle it, and so forth. We use a combination of commercial and custom rules in order to ensure that ModSecurity will prevent as many risks as possible, hence enhancing the protection of your web programs as much as possible.

ModSecurity in Dedicated Servers

ModSecurity is provided with all dedicated servers that are set up with our Hepsia CP and you will not need to do anything specific on your end to use it since it is enabled by default whenever you add a new domain or subdomain on your hosting server. In case it interferes with any of your applications, you shall be able to stop it through the respective area of Hepsia, or you may leave it working in passive mode, so it shall identify attacks and will still keep a log for them, but won't block them. You may examine the logs later to find out what you can do to boost the security of your websites as you'll find information such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity responded, and so forth. The rules that we employ are commercial, hence they are frequently updated by a security firm, but to be on the safe side, our administrators also add custom rules once in a while in order to deal with any new threats they have found.