ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks against web apps. It tracks the HTTP traffic to a particular Internet site in real time and prevents any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do this - for instance, attempting to log in to a script admin area without success a few times activates one rule, sending a request to execute a particular file that may result in accessing the website triggers a different rule, etc. ModSecurity is among the best firewalls around and it'll preserve even scripts that are not updated on a regular basis as it can prevent attackers from using known exploits and security holes. Very comprehensive info about each and every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the conventional logs provided by the Apache server, so you could later analyze them and determine whether you need to take extra measures so as to improve the protection of your script-driven Internet sites.

ModSecurity in Hosting

ModSecurity comes by default with all hosting solutions that we supply and it will be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has three different modes, so you could activate and disable it with only a click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites shall include elaborate information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and incorporate both commercial ones we get from a third-party security business and custom ones which our system administrators add in the event that they detect a new type of attacks. That way, the Internet sites you host here shall be a lot more secure without any action expected on your end.

ModSecurity in Semi-dedicated Servers

Any web application which you install in your new semi-dedicated server account will be protected by ModSecurity as the firewall comes with all our hosting solutions and is activated by default for any domain and subdomain that you include or create through your Hepsia hosting Control Panel. You will be able to manage ModSecurity via a dedicated section inside Hepsia where not simply could you activate or deactivate it entirely, but you may also enable a passive mode, so the firewall will not block anything, but it shall still maintain an archive of potential attacks. This requires simply a click and you shall be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was addressed, and so forth. The firewall uses 2 sets of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one that our administrators update personally as to respond to recently discovered threats as fast as possible.

ModSecurity in VPS Servers

Safety is vital to us, so we install ModSecurity on all VPS servers which are made available with the Hepsia CP by default. The firewall could be managed via a dedicated section inside Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you won't have to do anything by hand. You'll also be able to disable it or switch on the so-called detection mode, so it will keep a log of possible attacks which you can later examine, but will not prevent them. The logs in both passive and active modes offer info regarding the type of the attack and how it was eliminated, what IP it originated from and other important info that might help you to tighten the security of your sites by updating them or blocking IPs, as an example. Beyond the commercial rules that we get for ModSecurity from a third-party security company, we also implement our own rules since occasionally we discover specific attacks that are not yet present inside the commercial group. This way, we can easily enhance the security of your Virtual private server right away instead of waiting for a certified update.

ModSecurity in Dedicated Servers

All our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any program that you upload or set up shall be secured from the very beginning and you won't need to stress about common attacks or vulnerabilities. An individual section within Hepsia will permit you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information about intrusions, but does not take actions to prevent them. What you shall discover in the logs can easily allow you to to secure your sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this information, you can see whether a website needs an update, if you ought to block IPs from accessing your server, and so on. In addition to the third-party commercial security rules for ModSecurity we use, our administrators include custom ones too if they find a new threat which is not yet a part of the commercial bundle.