ModSecurity is a powerful firewall for Apache web servers that is used to stop attacks towards web apps. It monitors the HTTP traffic to a certain site in real time and stops any intrusion attempts the instant it discovers them. The firewall uses a set of rules to accomplish that - as an example, attempting to log in to a script admin area without success a few times activates one rule, sending a request to execute a certain file which may result in accessing the site triggers another rule, etc. ModSecurity is amongst the best firewalls on the market and it'll preserve even scripts which aren't updated on a regular basis because it can prevent attackers from using known exploits and security holes. Very detailed info about every intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the standard logs created by the Apache server, so you can later analyze them and determine whether you need to take additional measures so as to increase the security of your script-driven sites.

ModSecurity in Cloud Website Hosting

ModSecurity is offered with each and every cloud website hosting solution which we offer and it's turned on by default for any domain or subdomain which you add through your Hepsia Control Panel. If it disrupts any of your programs or you'd like to disable it for whatever reason, you'll be able to do that through the ModSecurity area of Hepsia with merely a mouse click. You can also enable a passive mode, so the firewall will identify potential attacks and keep a log, but won't take any action. You could view extensive logs in the same section, including the IP where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, etc. For optimum security of our clients we use a set of commercial firewall rules mixed with custom ones that are provided by our system admins.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server solutions and if you decide to host your Internet sites with us, there will not be anything special you will have to do since the firewall is turned on by default for all domains and subdomains which you include using your hosting Control Panel. If needed, you can disable ModSecurity for a certain website or enable the so-called detection mode in which case the firewall will still operate and record information, but won't do anything to stop possible attacks against your sites. Comprehensive logs shall be available within your CP and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so on. We use two kinds of rules on our servers - commercial ones from a firm that operates in the field of web security, and customized ones that our administrators occasionally add to respond to newly identified risks promptly.

ModSecurity in Dedicated Servers

If you opt to host your sites on a dedicated server with the Hepsia Control Panel, your web applications shall be protected right away since ModSecurity is provided with all Hepsia-based solutions. You'll be able to regulate the firewall easily and if necessary, you will be able to turn it off or switch on its passive mode when it will only keep a log of what is occurring without taking any action to prevent potential attacks. The logs that you'll find within the very same section of the CP are extremely detailed and contain data about the attacker IP address, what website and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etc. This data will enable you to take measures and enhance the protection of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our administrators include every time they identify attacks which have not yet been included in the commercial pack.