ModSecurity is a powerful firewall for Apache web servers which is used to prevent attacks towards web apps. It tracks the HTTP traffic to a specific Internet site in real time and blocks any intrusion attempts the moment it discovers them. The firewall uses a set of rules to accomplish that - as an illustration, trying to log in to a script admin area without success many times activates one rule, sending a request to execute a specific file which could result in gaining access to the website triggers another rule, and so on. ModSecurity is one of the best firewalls available on the market and it will preserve even scripts that aren't updated regularly because it can prevent attackers from using known exploits and security holes. Quite thorough info about each intrusion attempt is recorded and the logs the firewall keeps are a lot more specific than the standard logs provided by the Apache server, so you could later examine them and decide if you need to take more measures so as to improve the safety of your script-driven websites.

ModSecurity in Hosting

ModSecurity comes standard with all hosting plans that we offer and it'll be switched on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and deactivate it with simply a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for any of your sites will include comprehensive info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are regularly updated and consist of both commercial ones which we get from a third-party security firm and custom ones our system administrators add in case that they detect a new sort of attacks. In this way, the sites which you host here will be way more protected without any action needed on your end.

ModSecurity in Semi-dedicated Servers

Any web application that you install within your new semi-dedicated server account will be protected by ModSecurity since the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain you include or create through your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section in Hepsia where not simply can you activate or deactivate it completely, but you could also enable a passive mode, so the firewall will not stop anything, but it'll still maintain an archive of potential attacks. This normally requires simply a click and you will be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall uses 2 groups of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one which our admins update personally as to respond to newly discovered risks as quickly as possible.

ModSecurity in VPS Servers

Safety is vital to us, so we set up ModSecurity on all VPS servers which are made available with the Hepsia CP by default. The firewall can be managed via a dedicated section inside Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you will not need to do anything personally. You shall also be able to deactivate it or turn on the so-called detection mode, so it will keep a log of potential attacks you can later study, but shall not block them. The logs in both passive and active modes contain information regarding the form of the attack and how it was stopped, what IP it originated from and other useful data which may help you to tighten the security of your sites by updating them or blocking IPs, for example. Beyond the commercial rules which we get for ModSecurity from a third-party security company, we also use our own rules as every now and then we identify specific attacks that aren't yet present inside the commercial group. That way, we could boost the protection of your VPS immediately as opposed to awaiting a certified update.

ModSecurity in Dedicated Servers

If you opt to host your websites on a dedicated server with the Hepsia CP, your web programs will be secured immediately as ModSecurity is available with all Hepsia-based plans. You will be able to regulate the firewall without difficulty and if necessary, you shall be able to turn it off or activate its passive mode when it will only keep a log of what is occurring without taking any action to stop potential attacks. The logs which you'll find within the same section of the Control Panel are incredibly detailed and feature details about the attacker IP, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etc. This info will allow you to take measures and improve the security of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our staff add every time they recognize attacks that have not yet been included within the commercial pack.