ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks towards web applications. It monitors the HTTP traffic to a given website in real time and prevents any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to accomplish that - as an example, attempting to log in to a script administration area unsuccessfully a few times activates one rule, sending a request to execute a specific file that may result in gaining access to the site triggers another rule, and so forth. ModSecurity is one of the best firewalls available on the market and it'll secure even scripts which aren't updated often since it can prevent attackers from using known exploits and security holes. Very detailed info about each intrusion attempt is recorded and the logs the firewall maintains are far more comprehensive than the regular logs generated by the Apache server, so you could later analyze them and decide whether you need to take more measures in order to enhance the protection of your script-driven websites.

ModSecurity in Hosting

We offer ModSecurity with all hosting solutions, so your web applications will be protected against malicious attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you will be able to stop it through the respective area of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you shall find in Hepsia are extremely detailed and offer info about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, etcetera. We use a set of commercial rules that are regularly updated, but sometimes our administrators add custom rules as well in order to better protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server solutions which we offer feature ModSecurity and because the firewall is turned on by default, any site which you set up under a domain or a subdomain shall be protected immediately. A separate section inside the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to start and stop the firewall for any site or activate a detection mode. With the last mentioned, ModSecurity will not take any action, but it'll still identify possible attacks and shall keep all info inside a log as if it were fully active. The logs could be found inside the same section of the CP and they offer specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etc. The security rules which we use on our web servers are a mix of commercial ones from a security business and custom ones created by our system administrators. For that reason, we provide higher security for your web applications as we can defend them from attacks even before security corporations release updates for brand new threats.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP feature ModSecurity, so any application you upload or install shall be properly secured from the very beginning and you won't have to bother about common attacks or vulnerabilities. An individual section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or activate a detection mode so that it records information about intrusions, but does not take actions to prevent them. What you will see in the logs can easily enable you to to secure your websites better - the IP address an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this info, you can see if a website needs an update, whether you need to block IPs from accessing your server, etc. On top of the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too whenever they discover a new threat which is not yet a part of the commercial bundle.