ModSecurity is an effective firewall for Apache web servers that is used to stop attacks toward web apps. It keeps track of the HTTP traffic to a given website in real time and stops any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to accomplish that - as an illustration, attempting to log in to a script administrator area without success several times activates one rule, sending a request to execute a particular file that could result in gaining access to the Internet site triggers another rule, and so on. ModSecurity is amongst the best firewalls on the market and it will secure even scripts which are not updated regularly because it can prevent attackers from using known exploits and security holes. Very detailed info about every single intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the conventional logs created by the Apache server, so you can later take a look at them and decide if you need to take more measures so as to increase the safety of your script-driven sites.

ModSecurity in Web Hosting

ModSecurity is provided with all web hosting web servers, so when you opt to host your sites with our company, they shall be resistant to a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you will have to do on your end. You'll be able to stop ModSecurity for any website if needed, or to switch on a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You shall be able to view detailed logs through your Hepsia Control Panel including the IP address where the attack came from, what the attacker wished to do and how ModSecurity handled the threat. As we take the safety of our clients' websites very seriously, we use a set of commercial rules that we get from one of the leading companies that maintain this type of rules. Our admins also include custom rules to ensure that your Internet sites will be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting packages and if you choose to host your sites with us, there will not be anything special you will have to do since the firewall is turned on by default for all domains and subdomains that you include using your hosting CP. If necessary, you can disable ModSecurity for a particular site or enable the so-called detection mode in which case the firewall shall still work and record data, but will not do anything to prevent potential attacks against your websites. Thorough logs will be readily available in your CP and you shall be able to see which kind of attacks happened, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks came from, etc. We use two sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom ones that our admins sometimes include to respond to newly identified risks in a timely manner.

ModSecurity in VPS

ModSecurity comes with all Hepsia-based virtual private servers that we offer and it shall be turned on automatically for every new domain or subdomain that you include on the machine. That way, any web application that you install will be protected immediately without doing anything manually on your end. The firewall may be managed through the section of the Control Panel which bears the same name. This is the location in whichyou can turn off ModSecurity or let its passive mode, so it won't take any action towards threats, but shall still maintain a thorough log. The recorded information is available inside the same section as well and you will be able to see what IPs any attacks came from so that you block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules we use on our servers are a blend between commercial ones we obtain from a security firm and custom ones that are added by our staff to optimize the security of any web applications hosted on our end.

ModSecurity in Dedicated Hosting

ModSecurity is provided with all dedicated servers which are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it as it is turned on by default every time you include a new domain or subdomain on your server. In the event that it interferes with some of your applications, you'll be able to stop it via the respective area of Hepsia, or you could leave it working in passive mode, so it shall recognize attacks and shall still keep a log for them, but shall not prevent them. You could analyze the logs later to determine what you can do to improve the security of your websites since you will find info such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity reacted, etcetera. The rules that we use are commercial, therefore they are regularly updated by a security provider, but to be on the safe side, our administrators also add custom rules every now and then in order to deal with any new threats they have discovered.