ModSecurity is a highly effective firewall for Apache web servers that's used to stop attacks towards web apps. It monitors the HTTP traffic to a specific site in real time and stops any intrusion attempts as soon as it identifies them. The firewall relies on a set of rules to do this - as an illustration, trying to log in to a script administrator area unsuccessfully several times activates one rule, sending a request to execute a particular file that may result in accessing the site triggers another rule, and so forth. ModSecurity is one of the best firewalls out there and it'll secure even scripts that aren't updated on a regular basis because it can prevent attackers from using known exploits and security holes. Quite detailed info about every single intrusion attempt is recorded and the logs the firewall keeps are much more specific than the conventional logs generated by the Apache server, so you could later examine them and determine if you need to take more measures so as to improve the protection of your script-driven Internet sites.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting packages, so your Internet applications will be resistant to harmful attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you shall be able to stop it using the respective area of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you'll discover inside Hepsia are quite detailed and include info about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, etc. We employ a range of commercial rules which are frequently updated, but sometimes our admins add custom rules as well so as to better protect the websites hosted on our machines.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you choose to host your websites with our company, there shall not be anything special you'll need to do as the firewall is activated by default for all domains and subdomains you add through your hosting CP. If necessary, you'll be able to disable ModSecurity for a certain Internet site or activate the so-called detection mode in which case the firewall will still operate and record info, but shall not do anything to stop potential attacks on your Internet sites. In depth logs shall be readily available inside your Control Panel and you shall be able to see which kind of attacks happened, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks came from, etcetera. We use two kinds of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom ones that our admins often include to respond to newly found risks in a timely manner.

ModSecurity in VPS Servers

ModSecurity comes with all Hepsia-based VPS servers which we offer and it'll be switched on automatically for every new domain or subdomain which you add on the hosting server. That way, any web app which you install shall be secured right from the start without doing anything personally on your end. The firewall could be managed through the section of the Control Panel which bears the same name. This is the location in whichyou could disable ModSecurity or enable its passive mode, so it shall not take any action toward threats, but shall still keep a detailed log. The recorded information is available within the same area as well and you shall be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules we employ on our servers are a blend between commercial ones we obtain from a security firm and custom ones which are included by our administrators to improve the protection of any web applications hosted on our end.

ModSecurity in Dedicated Servers

ModSecurity is offered as standard with all dedicated servers which are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain that you create on the server. Just in case that a web app does not work correctly, you may either switch off the firewall or set it to work in passive mode. The latter means that ModSecurity will maintain a log of any possible attack that may occur, but shall not take any action to prevent it. The logs created in passive or active mode shall give you more details about the exact file that was attacked, the nature of the attack and the IP it originated from, etc. This data will enable you to decide what measures you can take to enhance the protection of your Internet sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules which we use are updated regularly with a commercial pack from a third-party security firm we work with, but sometimes our admins include their own rules too in case they identify a new potential threat.