ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks towards web applications. It keeps track of the HTTP traffic to a particular site in real time and blocks any intrusion attempts the instant it detects them. The firewall uses a set of rules to do that - as an example, trying to log in to a script admin area without success a few times activates one rule, sending a request to execute a specific file that could result in gaining access to the Internet site triggers a different rule, etcetera. ModSecurity is one of the best firewalls available on the market and it will secure even scripts which are not updated often since it can prevent attackers from using known exploits and security holes. Quite comprehensive information about each and every intrusion attempt is recorded and the logs the firewall maintains are far more specific than the regular logs created by the Apache server, so you can later examine them and decide whether you need to take additional measures in order to boost the security of your script-driven Internet sites.

ModSecurity in Cloud Hosting

We offer ModSecurity with all cloud hosting solutions, so your Internet apps will be shielded from malicious attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it via the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you shall discover in Hepsia are incredibly detailed and offer information about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, etc. We use a range of commercial rules that are frequently updated, but sometimes our administrators add custom rules as well in order to better protect the Internet sites hosted on our servers.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer come with ModSecurity and given that the firewall is switched on by default, any site you create under a domain or a subdomain will be secured straight away. An individual section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it will enable you to start and stop the firewall for any website or switch on a detection mode. With the latter, ModSecurity won't take any action, but it'll still recognize possible attacks and shall keep all information within a log as if it were completely active. The logs could be found inside the same section of the Control Panel and they offer specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so on. The security rules that we use on our machines are a mix of commercial ones from a security firm and custom ones developed by our system admins. As a result, we provide higher security for your web apps as we can protect them from attacks even before security corporations release updates for completely new threats.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you won't have to do anything specific on your end to employ it as it is enabled by default every time you include a new domain or subdomain on your server. If it disrupts some of your apps, you shall be able to stop it through the respective area of Hepsia, or you may leave it working in passive mode, so it will detect attacks and will still keep a log for them, but will not block them. You could examine the logs later to learn what you can do to enhance the safety of your sites as you shall find info such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity responded, etcetera. The rules which we use are commercial, thus they are regularly updated by a security provider, but to be on the safe side, our administrators also include custom rules occasionally as to react to any new threats they have found.