ModSecurity is a powerful firewall for Apache web servers that is used to stop attacks toward web applications. It tracks the HTTP traffic to a specific website in real time and blocks any intrusion attempts as soon as it detects them. The firewall relies on a set of rules to do that - for example, attempting to log in to a script administration area without success a few times sets off one rule, sending a request to execute a specific file which may result in getting access to the Internet site triggers another rule, and so on. ModSecurity is among the best firewalls available and it will preserve even scripts which aren't updated often as it can prevent attackers from employing known exploits and security holes. Incredibly thorough data about every single intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the standard logs created by the Apache server, so you can later take a look at them and determine whether you need to take extra measures in order to increase the safety of your script-driven sites.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting plans which we provide and it will be switched on automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with simply a click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to prevent them. The log for each of your websites shall feature elaborate information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are frequently updated and incorporate both commercial ones which we get from a third-party security company and custom ones that our system administrators add in the event that they detect a new kind of attacks. In this way, the websites you host here will be far more secure without any action needed on your end.

ModSecurity in Semi-dedicated Servers

We have incorporated ModSecurity by default in all semi-dedicated server packages, so your web apps will be protected whenever you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts shall permit you to switch on or turn off the firewall for any Internet site with a mouse click. You will also have the ability to turn on a passive detection mode with which ModSecurity shall maintain a log of potential attacks without actually preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response that attack generated, where it came from, etc. The list of rules that we use is frequently updated in order to match any new threats that may appear on the Internet and it includes both commercial rules that we get from a security corporation and custom-written ones which our admins add in case they find a threat that is not present inside the commercial list yet.

ModSecurity in VPS Servers

Protection is of the utmost importance to us, so we install ModSecurity on all VPS servers that are set up with the Hepsia CP as a standard. The firewall could be managed via a dedicated section in Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you won't have to do anything by hand. You will also be able to disable it or activate the so-called detection mode, so it will maintain a log of potential attacks which you can later examine, but won't prevent them. The logs in both passive and active modes contain details regarding the kind of the attack and how it was stopped, what IP it originated from and other useful data that may help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Besides the commercial rules we get for ModSecurity from a third-party security enterprise, we also implement our own rules as from time to time we detect specific attacks which aren't yet present in the commercial package. That way, we can easily improve the protection of your Virtual private server promptly as opposed to waiting for an official update.