ModSecurity is a highly effective firewall for Apache web servers that is used to stop attacks towards web applications. It monitors the HTTP traffic to a particular website in real time and blocks any intrusion attempts the moment it detects them. The firewall uses a set of rules to accomplish that - for instance, attempting to log in to a script admin area without success many times triggers one rule, sending a request to execute a certain file that may result in getting access to the Internet site triggers a different rule, etc. ModSecurity is among the best firewalls around and it will preserve even scripts which aren't updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Quite comprehensive data about every single intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the conventional logs provided by the Apache server, so you can later take a look at them and determine if you need to take extra measures in order to enhance the safety of your script-driven Internet sites.

ModSecurity in Cloud Hosting

ModSecurity is provided with all cloud hosting servers, so if you choose to host your Internet sites with our company, they will be protected against a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you will have to do on your end. You will be able to stop ModSecurity for any website if required, or to switch on a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You'll be able to view detailed logs via your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the security of our clients' Internet sites very seriously, we employ a collection of commercial rules that we get from one of the best companies that maintain this type of rules. Our admins also include custom rules to make sure that your sites will be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

Any web program that you set up inside your new semi-dedicated hosting account shall be protected by ModSecurity as the firewall is provided with all our hosting packages and is activated by default for any domain and subdomain that you include or create via your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated area in Hepsia where not simply could you activate or deactivate it fully, but you can also activate a passive mode, so the firewall will not stop anything, but it shall still maintain an archive of potential attacks. This requires only a click and you'll be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, and so on. The firewall employs 2 sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our administrators update manually in order to respond to recently discovered threats as quickly as possible.

ModSecurity in VPS

All virtual private servers which are offered with the Hepsia CP feature ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the web server, so there won't be anything special that you'll have to do to protect your websites. It will take you simply a click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any actions to prevent intrusions. You shall be able to view the logs created in active or passive mode through the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall used to take care of it, etc. We employ a combination of commercial and custom rules so as to make sure that ModSecurity will block as many risks as possible, thus enhancing the security of your web apps as much as possible.

ModSecurity in Dedicated Hosting

All our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any program which you upload or set up will be properly secured from the very beginning and you won't need to bother about common attacks or vulnerabilities. A separate section in Hepsia will permit you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but doesn't take actions to stop them. What you'll discover in the logs can easily enable you to to secure your sites better - the IP address an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this information, you can see whether a website needs an update, if you should block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity which we use, our admins add custom ones too if they come across a new threat that's not yet in the commercial bundle.