ModSecurity is a highly effective firewall for Apache web servers that's used to prevent attacks toward web applications. It monitors the HTTP traffic to a particular Internet site in real time and prevents any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to do this - as an illustration, attempting to log in to a script admin area unsuccessfully many times triggers one rule, sending a request to execute a certain file that may result in gaining access to the site triggers a different rule, and so on. ModSecurity is among the best firewalls on the market and it'll secure even scripts which are not updated regularly since it can prevent attackers from using known exploits and security holes. Very thorough information about each intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the conventional logs created by the Apache server, so you may later analyze them and determine if you need to take more measures in order to boost the security of your script-driven Internet sites.

ModSecurity in Cloud Website Hosting

ModSecurity can be found with each cloud website hosting package that we offer and it is activated by default for every domain or subdomain that you add via your Hepsia Control Panel. If it disrupts any of your programs or you'd like to disable it for whatever reason, you'll be able to do that through the ModSecurity section of Hepsia with just a mouse click. You can also use a passive mode, so the firewall will identify potential attacks and keep a log, but won't take any action. You could see comprehensive logs in the very same section, including the IP where the attack came from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For max protection of our customers we use a collection of commercial firewall rules combined with custom ones that are included by our system admins.

ModSecurity in Semi-dedicated Servers

Any web program which you install within your new semi-dedicated server account shall be protected by ModSecurity since the firewall comes with all our hosting packages and is switched on by default for any domain and subdomain you add or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section in Hepsia where not only could you activate or deactivate it completely, but you may also switch on a passive mode, so the firewall shall not stop anything, but it'll still keep a record of possible attacks. This requires only a click and you shall be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was dealt with, etc. The firewall uses two groups of rules on our servers - a commercial one that we get from a third-party web security provider and a custom one that our administrators update personally in order to respond to recently discovered risks immediately.

ModSecurity in Dedicated Servers

If you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web programs shall be secured straight away because ModSecurity is supplied with all Hepsia-based plans. You'll be able to regulate the firewall effortlessly and if required, you shall be able to turn it off or enable its passive mode when it'll only keep a log of what is going on without taking any action to prevent potential attacks. The logs which you can find in the same section of the CP are really detailed and include details about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, etc. This data shall permit you to take measures and increase the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our administrators add when they detect attacks that haven't yet been included inside the commercial pack.