ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks toward web apps. It tracks the HTTP traffic to a certain site in real time and prevents any intrusion attempts the instant it identifies them. The firewall uses a set of rules to do this - for instance, trying to log in to a script administration area unsuccessfully a few times triggers one rule, sending a request to execute a certain file which may result in gaining access to the site triggers a different rule, etc. ModSecurity is one of the best firewalls around and it'll preserve even scripts which aren't updated often because it can prevent attackers from employing known exploits and security holes. Incredibly detailed info about each intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the regular logs provided by the Apache server, so you may later analyze them and decide if you need to take more measures so as to improve the safety of your script-driven sites.

ModSecurity in Shared Website Hosting

ModSecurity comes by default with all shared website hosting solutions that we offer and it shall be turned on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with just a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to stop them. The log for each of your websites will contain in-depth information including the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are regularly updated and include both commercial ones we get from a third-party security company and custom ones our system administrators include in case that they detect a new sort of attacks. In this way, the sites that you host here shall be a lot more protected without any action required on your end.

ModSecurity in Semi-dedicated Servers

Any web application you install within your new semi-dedicated server account shall be protected by ModSecurity as the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain that you include or create through your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated area within Hepsia where not only can you activate or deactivate it entirely, but you could also enable a passive mode, so the firewall shall not block anything, but it will still maintain a record of possible attacks. This requires only a click and you shall be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, and so forth. The firewall employs two groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one that our administrators update personally in order to respond to newly discovered threats immediately.

ModSecurity in VPS Servers

Safety is very important to us, so we set up ModSecurity on all VPS servers which are set up with the Hepsia CP as a standard. The firewall can be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't need to do anything by hand. You'll also be able to deactivate it or switch on the so-called detection mode, so it'll keep a log of possible attacks which you can later analyze, but shall not block them. The logs in both passive and active modes include information regarding the type of the attack and how it was eliminated, what IP address it came from and other useful info which could help you to tighten the security of your sites by updating them or blocking IPs, for example. In addition to the commercial rules which we get for ModSecurity from a third-party security company, we also use our own rules as occasionally we detect specific attacks which aren't yet present in the commercial group. That way, we could improve the protection of your VPS in a timely manner rather than awaiting an official update.

ModSecurity in Dedicated Servers

When you opt to host your websites on a dedicated server with the Hepsia CP, your web applications will be secured right away as ModSecurity is supplied with all Hepsia-based solutions. You'll be able to regulate the firewall easily and if necessary, you shall be able to turn it off or switch on its passive mode when it shall only keep a log of what is happening without taking any action to stop potential attacks. The logs that you'll find in the same section of the CP are quite detailed and contain details about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so forth. This information shall enable you to take measures and boost the security of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our staff add every time they identify attacks which haven't yet been included in the commercial pack.