ModSecurity is a highly effective firewall for Apache web servers which is employed to prevent attacks against web apps. It tracks the HTTP traffic to a particular website in real time and blocks any intrusion attempts the instant it discovers them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script admin area without success several times activates one rule, sending a request to execute a specific file that may result in gaining access to the site triggers another rule, and so forth. ModSecurity is one of the best firewalls available on the market and it will protect even scripts which aren't updated often as it can prevent attackers from using known exploits and security holes. Quite thorough info about each and every intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the regular logs provided by the Apache server, so you can later examine them and decide whether you need to take extra measures so as to increase the security of your script-driven websites.
ModSecurity in Cloud Website Hosting
We provide ModSecurity with all cloud website hosting solutions, so your web applications shall be protected against harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you'll be able to stop it through the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you'll discover within Hepsia are incredibly detailed and feature info about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, and so forth. We use a range of commercial rules which are frequently updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
Any web app which you set up inside your new semi-dedicated hosting account will be protected by ModSecurity since the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain which you add or create via your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated area within Hepsia where not simply could you activate or deactivate it fully, but you can also enable a passive mode, so the firewall will not stop anything, but it shall still keep an archive of possible attacks. This normally requires simply a mouse click and you will be able to see the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was dealt with, etc. The firewall uses two sets of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one that our administrators update manually as to respond to recently discovered threats as soon as possible.
ModSecurity in VPS
ModSecurity is pre-installed on all virtual private servers that are provided with the Hepsia hosting CP, so your web programs shall be secured from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if required, you can disable it with a click from the corresponding section of Hepsia. You can also set it to operate in detection mode, so it will keep an extensive log of any possible attacks without taking any action to stop them. The logs can be found within the same section and offer info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For optimum security, we use not simply commercial rules from a firm operating in the field of web security, but also custom ones our admins add personally so as to respond to new threats which are still not addressed in the commercial rules.
ModSecurity in Dedicated Hosting
When you choose to host your websites on a dedicated server with the Hepsia Control Panel, your web apps will be secured right away as ModSecurity is available with all Hepsia-based packages. You'll be able to regulate the firewall effortlessly and if needed, you will be able to turn it off or enable its passive mode when it'll only maintain a log of what is taking place without taking any action to stop possible attacks. The logs which you will find within the exact same section of the CP are extremely detailed and contain info about the attacker IP, what website and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so forth. This info will permit you to take measures and boost the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our staff include when they recognize attacks which haven't yet been included within the commercial pack.