ModSecurity is an efficient firewall for Apache web servers that's used to stop attacks toward web apps. It keeps track of the HTTP traffic to a specific site in real time and prevents any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to accomplish that - for instance, trying to log in to a script admin area unsuccessfully several times sets off one rule, sending a request to execute a certain file which could result in getting access to the website triggers another rule, etcetera. ModSecurity is amongst the best firewalls available on the market and it will protect even scripts that aren't updated on a regular basis because it can prevent attackers from using known exploits and security holes. Very comprehensive information about each and every intrusion attempt is recorded and the logs the firewall maintains are far more comprehensive than the standard logs generated by the Apache server, so you may later examine them and decide if you need to take more measures so as to enhance the protection of your script-driven Internet sites.

ModSecurity in Hosting

ModSecurity is supplied with all hosting machines, so when you decide to host your sites with our company, they shall be resistant to a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you will have to do on your end. You will be able to stop ModSecurity for any site if required, or to activate a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You shall be able to view comprehensive logs from your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the safety of our clients' sites seriously, we use a selection of commercial rules which we take from one of the leading firms that maintain such rules. Our administrators also add custom rules to make sure that your websites shall be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Hosting

We've included ModSecurity as a standard within all semi-dedicated hosting packages, so your web apps shall be protected the instant you set them up under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will allow you to enable or disable the firewall for any site with a mouse click. You will also have the ability to turn on a passive detection mode through which ModSecurity will maintain a log of potential attacks without really preventing them. The comprehensive logs include things like the nature of the attack and what ModSecurity response that attack caused, where it originated from, and so on. The list of rules we employ is constantly updated as to match any new threats that might appear on the Internet and it comes with both commercial rules that we get from a security firm and custom-written ones which our administrators include if they find a threat which is not present within the commercial list yet.

ModSecurity in VPS Hosting

All virtual private servers which are offered with the Hepsia Control Panel feature ModSecurity. The firewall is installed and turned on by default for all domains that are hosted on the server, so there won't be anything special which you shall have to do to protect your Internet sites. It shall take you simply a mouse click to stop ModSecurity if necessary or to activate its passive mode so that it records what occurs without taking any actions to prevent intrusions. You will be able to see the logs generated in active or passive mode from the corresponding section of Hepsia and discover more about the form of the attack, where it came from, what rule the firewall employed to deal with it, etc. We use a combination of commercial and custom rules in order to make certain that ModSecurity will stop as many threats as possible, thus enhancing the security of your web apps as much as possible.

ModSecurity in Dedicated Web Hosting

All of our dedicated servers that are set up with the Hepsia hosting Control Panel feature ModSecurity, so any application you upload or install shall be secured from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. A separate section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records information about intrusions, but does not take actions to stop them. What you shall discover in the logs shall enable you to to secure your websites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this information, you can see whether a site needs an update, whether you need to block IPs from accessing your web server, and so on. On top of the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well whenever they find a new threat that is not yet in the commercial bundle.