ModSecurity is a powerful firewall for Apache web servers that is employed to stop attacks against web apps. It tracks the HTTP traffic to a particular site in real time and blocks any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to do that - as an illustration, attempting to log in to a script administrator area without success a few times activates one rule, sending a request to execute a particular file which could result in getting access to the site triggers a different rule, etc. ModSecurity is among the best firewalls on the market and it'll secure even scripts which are not updated regularly since it can prevent attackers from using known exploits and security holes. Very comprehensive info about every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the standard logs provided by the Apache server, so you could later take a look at them and decide if you need to take more measures so as to improve the safety of your script-driven sites.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting packages, so your Internet apps shall be resistant to malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you will be able to stop it via the respective area of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you'll find within Hepsia are incredibly detailed and feature information about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, etc. We employ a set of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well so as to better protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting plans and if you decide to host your Internet sites with us, there won't be anything special you'll need to do as the firewall is turned on by default for all domains and subdomains you add via your hosting Control Panel. If required, you'll be able to disable ModSecurity for a given website or turn on the so-called detection mode in which case the firewall will still work and record information, but will not do anything to stop potential attacks on your websites. Comprehensive logs will be readily available within your Control Panel and you'll be able to see which kind of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so on. We use 2 sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and custom ones which our administrators often add to respond to newly identified risks in a timely manner.

ModSecurity in VPS Hosting

ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting CP, so your web apps will be secured from the moment your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you can deactivate it with a click of your mouse from the corresponding section of Hepsia. You may also set it to function in detection mode, so it'll keep an extensive log of any possible attacks without taking any action to stop them. The logs can be found within the same section and include information about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For best security, we employ not simply commercial rules from a business operating in the field of web security, but also custom ones our administrators add personally so as to respond to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Web Hosting

ModSecurity is offered as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain which you create on the server. In case that a web app does not operate properly, you can either turn off the firewall or set it to operate in passive mode. The second means that ModSecurity will keep a log of any possible attack that may take place, but won't take any action to prevent it. The logs created in passive or active mode will give you more details about the exact file that was attacked, the form of the attack and the IP address it originated from, etcetera. This information shall allow you to determine what measures you can take to boost the safety of your Internet sites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules we employ are updated frequently with a commercial bundle from a third-party security provider we work with, but occasionally our staff add their own rules as well in case they find a new potential threat.