ModSecurity is an efficient firewall for Apache web servers which is employed to stop attacks toward web applications. It monitors the HTTP traffic to a specific site in real time and stops any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to accomplish that - for example, trying to log in to a script administrator area unsuccessfully many times activates one rule, sending a request to execute a certain file which could result in getting access to the site triggers a different rule, and so forth. ModSecurity is one of the best firewalls available and it'll protect even scripts which are not updated regularly as it can prevent attackers from employing known exploits and security holes. Very thorough info about every single intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the regular logs provided by the Apache server, so you can later analyze them and decide whether you need to take additional measures so as to boost the security of your script-driven Internet sites.

ModSecurity in Shared Website Hosting

ModSecurity is available with each shared website hosting solution that we offer and it is turned on by default for every domain or subdomain which you add through your Hepsia CP. In case it interferes with any of your programs or you'd like to disable it for some reason, you shall be able to do this through the ModSecurity area of Hepsia with only a click. You could also activate a passive mode, so the firewall will detect possible attacks and keep a log, but will not take any action. You'll be able to view extensive logs in the same section, including the IP where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For maximum protection of our customers we use a group of commercial firewall rules combined with custom ones which are added by our system administrators.

ModSecurity in Semi-dedicated Hosting

Any web app you install in your new semi-dedicated hosting account will be protected by ModSecurity as the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain you add or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated section in Hepsia where not simply could you activate or deactivate it completely, but you can also enable a passive mode, so the firewall won't block anything, but it will still maintain a record of potential attacks. This requires only a mouse click and you shall be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, etcetera. The firewall employs 2 groups of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one which our administrators update manually as to respond to newly discovered risks as quickly as possible.

ModSecurity in Dedicated Servers Hosting

All our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any app you upload or set up shall be protected from the very beginning and you won't need to stress about common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you shall find in the logs shall enable you to to secure your websites better - the IP address an attack came from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this data, you could see if an Internet site needs an update, whether you need to block IPs from accessing your web server, and so on. Besides the third-party commercial security rules for ModSecurity we use, our admins include custom ones too when they come across a new threat that's not yet in the commercial bundle.