ModSecurity is an effective firewall for Apache web servers that is used to stop attacks toward web apps. It monitors the HTTP traffic to a given website in real time and stops any intrusion attempts the moment it identifies them. The firewall uses a set of rules to do this - for instance, trying to log in to a script administration area unsuccessfully a few times sets off one rule, sending a request to execute a certain file that may result in gaining access to the website triggers another rule, etc. ModSecurity is one of the best firewalls available on the market and it will preserve even scripts that are not updated often since it can prevent attackers from using known exploits and security holes. Incredibly comprehensive data about every single intrusion attempt is recorded and the logs the firewall keeps are considerably more comprehensive than the standard logs created by the Apache server, so you can later examine them and determine whether you need to take more measures in order to increase the safety of your script-driven websites.

ModSecurity in Shared Web Hosting

ModSecurity is provided with all shared web hosting servers, so if you decide to host your sites with our company, they shall be protected against an array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any Internet site if needed, or to activate a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You will be able to view comprehensive logs via your Hepsia Control Panel including the IP address where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. Since we take the safety of our clients' websites seriously, we employ a selection of commercial rules that we take from one of the leading companies which maintain this type of rules. Our administrators also add custom rules to make certain that your websites shall be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages that we offer feature ModSecurity and given that the firewall is switched on by default, any site you create under a domain or a subdomain will be protected right away. A separate section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall allow you to stop and start the firewall for any site or switch on a detection mode. With the last mentioned, ModSecurity won't take any action, but it'll still detect possible attacks and shall keep all data within a log as if it were fully active. The logs can be found inside the same section of the CP and they feature specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules that we use on our web servers are a mix of commercial ones from a security firm and custom ones created by our system administrators. Consequently, we offer greater security for your web programs as we can defend them from attacks even before security companies release updates for brand new threats.

ModSecurity in VPS Web Hosting

ModSecurity comes with all Hepsia-based virtual private servers that we offer and it shall be activated automatically for every new domain or subdomain that you include on the machine. In this way, any web app you install will be protected right away without doing anything by hand on your end. The firewall can be handled from the section of the Control Panel that bears the same name. This is the area in whichyou could disable ModSecurity or enable its passive mode, so it will not take any action towards threats, but shall still keep a comprehensive log. The recorded information is available within the same area as well and you'll be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules we use on our servers are a mixture between commercial ones which we obtain from a security company and custom ones which are added by our staff to optimize the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers Hosting

When you decide to host your sites on a dedicated server with the Hepsia CP, your web applications will be protected immediately since ModSecurity is supplied with all Hepsia-based solutions. You'll be able to manage the firewall effortlessly and if necessary, you shall be able to turn it off or activate its passive mode when it shall only maintain a log of what is happening without taking any action to stop potential attacks. The logs that you can find within the very same section of the Control Panel are incredibly detailed and contain information about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etc. This information will permit you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins add every time they identify attacks that have not yet been included inside the commercial pack.