ModSecurity is a highly effective firewall for Apache web servers that's used to stop attacks toward web applications. It tracks the HTTP traffic to a particular website in real time and blocks any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to do this - as an illustration, trying to log in to a script administrator area unsuccessfully several times sets off one rule, sending a request to execute a specific file which could result in getting access to the website triggers another rule, etcetera. ModSecurity is among the best firewalls on the market and it'll secure even scripts which are not updated often as it can prevent attackers from using known exploits and security holes. Very detailed data about every single intrusion attempt is recorded and the logs the firewall maintains are far more comprehensive than the regular logs provided by the Apache server, so you may later analyze them and decide whether you need to take extra measures so as to enhance the protection of your script-driven Internet sites.

ModSecurity in Shared Website Hosting

We provide ModSecurity with all shared website hosting plans, so your web applications will be protected against harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you will be able to stop it through the respective part of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall discover within Hepsia are very detailed and include info about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, and so on. We employ a set of commercial rules which are constantly updated, but sometimes our administrators add custom rules as well in order to efficiently protect the sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server packages and if you opt to host your sites with our company, there will not be anything special you will have to do given that the firewall is switched on by default for all domains and subdomains you include using your hosting Control Panel. If needed, you can disable ModSecurity for a certain website or switch on the so-called detection mode in which case the firewall will still work and record data, but shall not do anything to prevent potential attacks on your websites. Detailed logs will be readily available within your CP and you shall be able to see what sort of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, and so forth. We use two kinds of rules on our servers - commercial ones from a business that operates in the field of web security, and custom ones that our administrators occasionally include to respond to newly identified risks in a timely manner.

ModSecurity in Dedicated Servers

If you choose to host your sites on a dedicated server with the Hepsia CP, your web apps will be protected right from the start because ModSecurity is available with all Hepsia-based solutions. You shall be able to control the firewall without difficulty and if required, you shall be able to turn it off or enable its passive mode when it will only keep a log of what's taking place without taking any action to stop possible attacks. The logs which you will find in the same section of the Control Panel are incredibly detailed and include information about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, etc. This information will permit you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our administrators add whenever they identify attacks that have not yet been included in the commercial pack.