ModSecurity is an effective firewall for Apache web servers that's employed to stop attacks towards web apps. It monitors the HTTP traffic to a certain Internet site in real time and prevents any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to do that - as an illustration, attempting to log in to a script administrator area unsuccessfully several times sets off one rule, sending a request to execute a particular file which could result in getting access to the site triggers a different rule, etc. ModSecurity is amongst the best firewalls around and it will secure even scripts which aren't updated frequently since it can prevent attackers from using known exploits and security holes. Incredibly thorough information about every single intrusion attempt is recorded and the logs the firewall maintains are far more detailed than the regular logs generated by the Apache server, so you can later analyze them and determine whether you need to take additional measures so as to increase the security of your script-driven websites.

ModSecurity in Hosting

ModSecurity is available with every hosting solution that we offer and it is switched on by default for every domain or subdomain which you include through your Hepsia CP. In case it disrupts any of your programs or you would like to disable it for any reason, you shall be able to do that through the ModSecurity area of Hepsia with merely a mouse click. You may also activate a passive mode, so the firewall will identify possible attacks and maintain a log, but shall not take any action. You can view extensive logs in the same section, including the IP where the attack originated from, what precisely the attacker attempted to do and at what time, what ModSecurity did, and so forth. For max safety of our customers we use a collection of commercial firewall rules blended with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Servers

ModSecurity is part of our semi-dedicated server solutions and if you opt to host your sites with our company, there won't be anything special you will have to do since the firewall is switched on by default for all domains and subdomains that you add via your hosting CP. If necessary, you can disable ModSecurity for a certain site or activate the so-called detection mode in which case the firewall shall still work and record data, but won't do anything to prevent potential attacks against your sites. Comprehensive logs will be readily available inside your CP and you'll be able to see what type of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, etc. We use two types of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones which our admins sometimes add to respond to newly discovered threats promptly.

ModSecurity in Dedicated Servers

ModSecurity is included with all dedicated servers which are set up with our Hepsia Control Panel and you will not need to do anything specific on your end to use it because it is enabled by default every time you include a new domain or subdomain on your hosting server. In case it disrupts any of your apps, you will be able to stop it via the respective area of Hepsia, or you can leave it working in passive mode, so it will identify attacks and will still keep a log for them, but won't stop them. You could analyze the logs later to learn what you can do to increase the security of your Internet sites since you will find information such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity responded, and so forth. The rules we employ are commercial, therefore they are frequently updated by a security provider, but to be on the safe side, our administrators also include custom rules occasionally in order to deal with any new threats they have discovered.