ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks toward web apps. It monitors the HTTP traffic to a given site in real time and prevents any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to do this - for instance, trying to log in to a script admin area unsuccessfully a few times activates one rule, sending a request to execute a certain file which could result in accessing the site triggers another rule, etcetera. ModSecurity is one of the best firewalls on the market and it'll secure even scripts that are not updated frequently since it can prevent attackers from using known exploits and security holes. Very comprehensive info about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the regular logs created by the Apache server, so you could later analyze them and determine if you need to take more measures in order to boost the safety of your script-driven websites.

ModSecurity in Cloud Hosting

We provide ModSecurity with all cloud hosting solutions, so your web applications shall be protected against destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you will be able to stop it via the respective part of your Hepsia CP. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you'll discover within Hepsia are quite detailed and feature info about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, and so forth. We employ a group of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server plans and if you choose to host your websites with our company, there shall not be anything special you'll need to do as the firewall is activated by default for all domains and subdomains that you add via your hosting CP. If required, you'll be able to disable ModSecurity for a certain Internet site or switch on the so-called detection mode in which case the firewall shall still work and record information, but won't do anything to prevent potential attacks on your websites. Comprehensive logs shall be readily available within your CP and you'll be able to see which kind of attacks took place, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so on. We use 2 kinds of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones that our admins often include to respond to newly found threats promptly.

ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting CP, so your web apps shall be protected from the instant your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you could disable it with a click via the corresponding section of Hepsia. You may also set it to work in detection mode, so it will maintain a detailed log of any potential attacks without taking any action to stop them. The logs can be found within the exact same section and provide details about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For best security, we employ not simply commercial rules from a company working in the field of web security, but also custom ones our admins include personally so as to react to new threats that are still not tackled in the commercial rules.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any program which you upload or install will be protected from the very beginning and you won't need to worry about common attacks or vulnerabilities. A separate section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you will see in the logs can enable you to to secure your websites better - the IP address an attack came from, what site was attacked and how, what ModSecurity rule was triggered, and so on. With this information, you'll be able to see if a site needs an update, if you should block IPs from accessing your web server, etcetera. Besides the third-party commercial security rules for ModSecurity we use, our admins include custom ones too when they discover a new threat which is not yet in the commercial bundle.