ModSecurity is a highly effective firewall for Apache web servers which is employed to stop attacks against web applications. It keeps track of the HTTP traffic to a given Internet site in real time and stops any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to accomplish that - as an example, attempting to log in to a script administration area without success a few times activates one rule, sending a request to execute a certain file that may result in gaining access to the website triggers a different rule, etc. ModSecurity is one of the best firewalls on the market and it will secure even scripts which aren't updated regularly since it can prevent attackers from employing known exploits and security holes. Quite comprehensive information about every single intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the standard logs provided by the Apache server, so you could later analyze them and determine whether you need to take extra measures in order to enhance the safety of your script-driven sites.

ModSecurity in Shared Hosting

ModSecurity is supplied with all shared hosting web servers, so if you choose to host your sites with our firm, they will be protected against a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you'll need to do on your end. You'll be able to stop ModSecurity for any site if needed, or to switch on a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You'll be able to view detailed logs using your Hepsia Control Panel including the IP address where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the safety of our clients' sites very seriously, we employ a set of commercial rules that we get from one of the leading firms that maintain this sort of rules. Our administrators also include custom rules to make sure that your sites will be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity as a standard within all semi-dedicated hosting products, so your web apps will be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will permit you to enable or turn off the firewall for any website with a mouse click. You shall also have the ability to turn on a passive detection mode with which ModSecurity will keep a log of possible attacks without actually stopping them. The detailed logs include the nature of the attack and what ModSecurity response that attack triggered, where it came from, and so forth. The list of rules we use is regularly updated in order to match any new threats which might appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones that our administrators include in case they find a threat that is not present inside the commercial list yet.

ModSecurity in VPS Hosting

All virtual private servers that are offered with the Hepsia CP feature ModSecurity. The firewall is set up and activated by default for all domains that are hosted on the web server, so there won't be anything special which you shall have to do to protect your Internet sites. It will take you a click to stop ModSecurity if necessary or to activate its passive mode so that it records what goes on without taking any actions to prevent intrusions. You shall be able to see the logs generated in active or passive mode via the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall employed to deal with it, etc. We use a mix of commercial and custom rules so as to ensure that ModSecurity will prevent as many threats as possible, thus boosting the security of your web apps as much as possible.

ModSecurity in Dedicated Web Hosting

All of our dedicated servers which are installed with the Hepsia hosting Control Panel come with ModSecurity, so any app that you upload or set up shall be protected from the very beginning and you will not have to worry about common attacks or vulnerabilities. A separate section in Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you will discover in the logs can easily help you to secure your sites better - the IP an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this data, you could see whether a site needs an update, if you need to block IPs from accessing your hosting server, and so forth. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones too whenever they come across a new threat that's not yet in the commercial bundle.