ModSecurity is an effective firewall for Apache web servers which is used to prevent attacks against web apps. It tracks the HTTP traffic to a given Internet site in real time and stops any intrusion attempts as soon as it detects them. The firewall relies on a set of rules to accomplish that - for instance, attempting to log in to a script admin area unsuccessfully a few times sets off one rule, sending a request to execute a specific file that could result in accessing the Internet site triggers a different rule, etcetera. ModSecurity is one of the best firewalls around and it will secure even scripts which aren't updated often as it can prevent attackers from using known exploits and security holes. Quite thorough info about every single intrusion attempt is recorded and the logs the firewall keeps are much more comprehensive than the conventional logs generated by the Apache server, so you can later take a look at them and decide whether you need to take additional measures in order to increase the protection of your script-driven sites.

ModSecurity in Cloud Web Hosting

ModSecurity is offered with every single cloud web hosting solution that we provide and it's switched on by default for every domain or subdomain that you add via your Hepsia CP. In the event that it disrupts any of your apps or you would like to disable it for any reason, you shall be able to do this through the ModSecurity section of Hepsia with merely a click. You could also use a passive mode, so the firewall will recognize potential attacks and keep a log, but will not take any action. You can view extensive logs in the exact same section, including the IP where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, and so on. For max security of our clients we use a group of commercial firewall rules mixed with custom ones that are added by our system admins.

ModSecurity in Semi-dedicated Servers

Any web program that you set up inside your new semi-dedicated server account shall be protected by ModSecurity as the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain that you add or create through your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated area in Hepsia where not only could you activate or deactivate it completely, but you could also switch on a passive mode, so the firewall will not block anything, but it shall still keep a record of potential attacks. This takes only a click and you'll be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was dealt with, etcetera. The firewall employs two sets of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one which our administrators update personally as to respond to newly discovered threats immediately.

ModSecurity in Dedicated Servers

If you opt to host your Internet sites on a dedicated server with the Hepsia CP, your web apps will be secured right away because ModSecurity is supplied with all Hepsia-based packages. You will be able to regulate the firewall without difficulty and if necessary, you'll be able to turn it off or activate its passive mode when it will only maintain a log of what's occurring without taking any action to prevent possible attacks. The logs that you will find in the same section of the Control Panel are very detailed and feature info about the attacker IP address, what website and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, and so on. This data shall allow you to take measures and enhance the security of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our staff include when they identify attacks that haven't yet been included within the commercial pack.