ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks towards web applications. It monitors the HTTP traffic to a certain website in real time and stops any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to do that - as an example, attempting to log in to a script administrator area without success several times activates one rule, sending a request to execute a certain file which may result in gaining access to the Internet site triggers a different rule, etc. ModSecurity is amongst the best firewalls around and it will preserve even scripts that are not updated regularly as it can prevent attackers from employing known exploits and security holes. Very comprehensive information about each intrusion attempt is recorded and the logs the firewall keeps are a lot more specific than the regular logs generated by the Apache server, so you could later analyze them and determine whether you need to take more measures so as to improve the security of your script-driven websites.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting solutions which we provide and it will be activated automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you could activate and deactivate it with only a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to stop them. The log for any of your Internet sites will include detailed info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are regularly updated and comprise of both commercial ones that we get from a third-party security firm and custom ones which our system administrators include in case that they detect a new type of attacks. This way, the sites which you host here shall be far more protected with no action required on your end.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting plans which we offer feature ModSecurity and because the firewall is turned on by default, any site which you set up under a domain or a subdomain will be secured straight away. An independent section within the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to stop and start the firewall for any website or switch on a detection mode. With the last option, ModSecurity shall not take any action, but it will still detect possible attacks and will keep all information inside a log as if it were fully active. The logs could be found within the very same section of the CP and they feature info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so forth. The security rules which we use on our servers are a mix of commercial ones from a security company and custom ones made by our system administrators. Therefore, we provide increased security for your web programs as we can shield them from attacks before security businesses release updates for brand new threats.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web applications shall be protected from the moment your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if required, you could deactivate it with a click via the corresponding section of Hepsia. You may also set it to work in detection mode, so it'll maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs are available inside the same section and provide information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For best security, we use not simply commercial rules from a firm operating in the field of web security, but also custom ones that our administrators add personally so as to react to new threats which are still not tackled in the commercial rules.

ModSecurity in Dedicated Hosting

ModSecurity comes with all dedicated servers that are integrated with our Hepsia CP and you won't need to do anything specific on your end to employ it as it's switched on by default each time you add a new domain or subdomain on your server. In case it disrupts any of your apps, you shall be able to stop it through the respective area of Hepsia, or you could leave it in passive mode, so it shall identify attacks and shall still maintain a log for them, but will not block them. You can look at the logs later to learn what you can do to enhance the security of your websites as you will find info such as where an intrusion attempt originated from, what Internet site was attacked and based on what rule ModSecurity reacted, and so on. The rules which we use are commercial, therefore they're regularly updated by a security provider, but to be on the safe side, our admins also include custom rules once in a while as to react to any new threats they have discovered.