ModSecurity is a highly effective firewall for Apache web servers that is employed to prevent attacks towards web applications. It keeps track of the HTTP traffic to a certain site in real time and stops any intrusion attempts as soon as it detects them. The firewall uses a set of rules to do this - as an illustration, attempting to log in to a script administrator area unsuccessfully many times triggers one rule, sending a request to execute a certain file that may result in getting access to the site triggers another rule, etcetera. ModSecurity is among the best firewalls around and it'll protect even scripts which aren't updated often as it can prevent attackers from employing known exploits and security holes. Very detailed data about every single intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the standard logs provided by the Apache server, so you can later analyze them and decide if you need to take more measures in order to increase the security of your script-driven websites.

ModSecurity in Cloud Web Hosting

ModSecurity is offered with every single cloud web hosting package that we offer and it is activated by default for every domain or subdomain which you include through your Hepsia Control Panel. If it disrupts any of your apps or you would like to disable it for some reason, you shall be able to accomplish that through the ModSecurity section of Hepsia with merely a mouse click. You can also use a passive mode, so the firewall will identify potential attacks and maintain a log, but won't take any action. You'll be able to view detailed logs in the very same section, including the IP address where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For optimum protection of our customers we use a group of commercial firewall rules blended with custom ones that are included by our system admins.

ModSecurity in Semi-dedicated Servers

Any web app which you install within your new semi-dedicated server account shall be protected by ModSecurity as the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain which you include or create through your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated section in Hepsia where not only can you activate or deactivate it entirely, but you could also enable a passive mode, so the firewall won't block anything, but it'll still maintain a record of possible attacks. This normally requires just a click and you'll be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, and so forth. The firewall employs 2 groups of rules on our machines - a commercial one which we get from a third-party web security company and a custom one which our administrators update manually in order to respond to recently discovered risks as quickly as possible.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting CP, so your web programs shall be secured from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if necessary, you could deactivate it with a mouse click from the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall keep an extensive log of any possible attacks without taking any action to prevent them. The logs are available inside the same section and offer information about the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For best security, we use not only commercial rules from a company operating in the field of web security, but also custom ones that our administrators include manually in order to react to new risks which are still not addressed in the commercial rules.

ModSecurity in Dedicated Servers

If you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps will be secured straight away because ModSecurity is provided with all Hepsia-based packages. You'll be able to manage the firewall effortlessly and if needed, you shall be able to turn it off or activate its passive mode when it'll only keep a log of what is happening without taking any action to stop possible attacks. The logs that you'll find inside the very same section of the CP are extremely detailed and include details about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, and so on. This information will enable you to take measures and increase the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff add when they identify attacks which have not yet been included in the commercial pack.