ModSecurity is a powerful firewall for Apache web servers which is employed to prevent attacks toward web apps. It monitors the HTTP traffic to a certain website in real time and blocks any intrusion attempts the moment it detects them. The firewall uses a set of rules to do that - as an example, trying to log in to a script administration area unsuccessfully a few times triggers one rule, sending a request to execute a specific file which may result in getting access to the Internet site triggers another rule, and so forth. ModSecurity is amongst the best firewalls around and it will protect even scripts which aren't updated often because it can prevent attackers from using known exploits and security holes. Quite thorough info about each and every intrusion attempt is recorded and the logs the firewall keeps are considerably more detailed than the standard logs created by the Apache server, so you may later take a look at them and determine whether you need to take additional measures in order to boost the security of your script-driven Internet sites.

ModSecurity in Semi-dedicated Hosting

ModSecurity is part of our semi-dedicated hosting solutions and if you opt to host your Internet sites with us, there shall not be anything special you'll need to do given that the firewall is turned on by default for all domains and subdomains you add through your hosting Control Panel. If required, you can disable ModSecurity for a given website or activate the so-called detection mode in which case the firewall shall still work and record data, but shall not do anything to prevent potential attacks on your websites. Detailed logs shall be accessible inside your CP and you'll be able to see what type of attacks occurred, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks came from, and so forth. We employ two kinds of rules on our servers - commercial ones from a company that operates in the field of web security, and custom made ones which our admins sometimes add to respond to newly found risks on time.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting CP, so your web apps shall be protected from the instant your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if necessary, you'll be able to disable it with a click from the corresponding section of Hepsia. You could also set it to function in detection mode, so it shall maintain a detailed log of any potential attacks without taking any action to prevent them. The logs can be found in the very same section and include information regarding the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For best security, we employ not simply commercial rules from a business operating in the field of web security, but also custom ones which our administrators add personally so as to respond to new risks which are still not addressed in the commercial rules.

ModSecurity in Dedicated Hosting

If you decide to host your Internet sites on a dedicated server with the Hepsia CP, your web applications will be protected right from the start since ModSecurity is provided with all Hepsia-based solutions. You'll be able to control the firewall with ease and if necessary, you'll be able to turn it off or switch on its passive mode when it will only maintain a log of what's happening without taking any action to stop potential attacks. The logs which you'll find in the same section of the CP are incredibly detailed and feature info about the attacker IP address, what website and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This information shall enable you to take measures and increase the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff include every time they identify attacks that have not yet been included inside the commercial pack.