ModSecurity is a highly effective firewall for Apache web servers that is employed to prevent attacks towards web applications. It keeps track of the HTTP traffic to a given Internet site in real time and blocks any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to do that - as an example, attempting to log in to a script administration area without success a few times activates one rule, sending a request to execute a specific file that could result in gaining access to the website triggers another rule, etcetera. ModSecurity is one of the best firewalls around and it will secure even scripts which are not updated often since it can prevent attackers from employing known exploits and security holes. Incredibly detailed data about every single intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the conventional logs created by the Apache server, so you can later analyze them and decide if you need to take additional measures so as to boost the protection of your script-driven websites.

ModSecurity in Shared Website Hosting

ModSecurity is available with every single shared website hosting plan which we offer and it's switched on by default for any domain or subdomain which you add through your Hepsia Control Panel. If it interferes with any of your applications or you'd like to disable it for whatever reason, you will be able to do that through the ModSecurity section of Hepsia with simply a click. You may also use a passive mode, so the firewall will identify potential attacks and maintain a log, but won't take any action. You could see comprehensive logs in the very same section, including the IP where the attack came from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For optimum safety of our customers we use a set of commercial firewall rules mixed with custom ones that are added by our system administrators.

ModSecurity in Semi-dedicated Servers

We've included ModSecurity by default inside all semi-dedicated server plans, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will permit you to activate or disable the firewall for any Internet site with a mouse click. You will also have the ability to turn on a passive detection mode in which ModSecurity shall maintain a log of possible attacks without really preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response that attack activated, where it originated from, etc. The list of rules we employ is regularly updated in order to match any new risks that could appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones that our admins add in the event that they discover a threat that's not present in the commercial list yet.

ModSecurity in Dedicated Servers

If you opt to host your Internet sites on a dedicated server with the Hepsia CP, your web programs shall be secured right away because ModSecurity is supplied with all Hepsia-based solutions. You shall be able to control the firewall easily and if required, you will be able to turn it off or enable its passive mode when it shall only maintain a log of what is occurring without taking any action to stop potential attacks. The logs that you will find inside the exact same section of the CP are extremely detailed and include details about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etc. This information shall allow you to take measures and improve the security of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our staff add when they recognize attacks which haven't yet been included in the commercial pack.