ModSecurity is an efficient firewall for Apache web servers that's employed to prevent attacks against web apps. It keeps track of the HTTP traffic to a specific website in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to do this - for example, attempting to log in to a script administrator area unsuccessfully a few times triggers one rule, sending a request to execute a specific file that could result in gaining access to the Internet site triggers another rule, etc. ModSecurity is one of the best firewalls out there and it will protect even scripts which aren't updated regularly because it can prevent attackers from employing known exploits and security holes. Very detailed info about every single intrusion attempt is recorded and the logs the firewall maintains are far more detailed than the regular logs provided by the Apache server, so you may later analyze them and decide if you need to take extra measures so as to improve the protection of your script-driven Internet sites.

ModSecurity in Web Hosting

We offer ModSecurity with all web hosting solutions, so your Internet apps will be resistant to harmful attacks. The firewall is switched on as standard for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective area of your Hepsia CP. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you'll discover in Hepsia are very detailed and feature info about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, etc. We use a group of commercial rules which are often updated, but sometimes our admins add custom rules as well in order to efficiently protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting packages and if you choose to host your websites with us, there won't be anything special you'll need to do given that the firewall is activated by default for all domains and subdomains which you add using your hosting CP. If required, you'll be able to disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall shall still work and record info, but will not do anything to prevent possible attacks against your sites. Comprehensive logs shall be accessible within your Control Panel and you shall be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks originated from, etcetera. We employ two kinds of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones which our administrators sometimes add to respond to newly identified threats on time.

ModSecurity in Dedicated Web Hosting

ModSecurity comes with all dedicated servers that are set up with our Hepsia CP and you will not need to do anything specific on your end to employ it because it's turned on by default every time you add a new domain or subdomain on your hosting server. In the event that it disrupts any of your programs, you'll be able to stop it through the respective section of Hepsia, or you can leave it working in passive mode, so it shall identify attacks and shall still keep a log for them, but won't stop them. You could examine the logs later to learn what you can do to enhance the safety of your sites as you will find information such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity reacted, and so on. The rules that we employ are commercial, thus they are regularly updated by a security provider, but to be on the safe side, our admins also add custom rules every now and then in order to deal with any new threats they have found.