ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks towards web apps. It keeps track of the HTTP traffic to a particular Internet site in real time and stops any intrusion attempts the moment it identifies them. The firewall uses a set of rules to do this - for instance, trying to log in to a script administration area without success several times sets off one rule, sending a request to execute a certain file that may result in gaining access to the Internet site triggers a different rule, etc. ModSecurity is amongst the best firewalls available on the market and it will protect even scripts which aren't updated often as it can prevent attackers from using known exploits and security holes. Incredibly thorough info about every single intrusion attempt is recorded and the logs the firewall keeps are considerably more specific than the standard logs generated by the Apache server, so you could later analyze them and determine whether you need to take more measures in order to enhance the safety of your script-driven websites.

ModSecurity in Cloud Website Hosting

ModSecurity is available on all cloud website hosting machines, so if you decide to host your sites with our company, they will be resistant to a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you'll have to do on your end. You shall be able to stop ModSecurity for any site if required, or to enable a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs from your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. As we take the safety of our clients' Internet sites seriously, we employ a selection of commercial rules that we get from one of the best companies which maintain this sort of rules. Our admins also add custom rules to make sure that your websites will be shielded from as many threats as possible.

ModSecurity in Semi-dedicated Hosting

We have incorporated ModSecurity as a standard inside all semi-dedicated hosting plans, so your web apps shall be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will allow you to activate or disable the firewall for any website with a mouse click. You shall also be able to switch on a passive detection mode with which ModSecurity shall keep a log of potential attacks without really stopping them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so on. The list of rules that we employ is frequently updated as to match any new risks which could appear on the Internet and it comes with both commercial rules that we get from a security corporation and custom-written ones that our admins add in the event that they find a threat which is not present within the commercial list yet.

ModSecurity in VPS Web Hosting

ModSecurity is provided with all Hepsia-based virtual private servers which we offer and it will be switched on automatically for any new domain or subdomain which you add on the server. That way, any web application you install will be protected right away without doing anything manually on your end. The firewall can be handled via the section of the CP that has the same name. This is the area in whichyou'll be able to turn off ModSecurity or enable its passive mode, so it shall not take any action towards threats, but shall still maintain a thorough log. The recorded information is available inside the same section as well and you shall be able to see what IPs any attacks originated from so that you stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules which we use on our servers are a blend between commercial ones we obtain from a security company and custom ones which are included by our staff to optimize the security of any web apps hosted on our end.

ModSecurity in Dedicated Servers Hosting

ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you won't need to do anything specific on your end to use it as it is switched on by default whenever you include a new domain or subdomain on your hosting server. In case it disrupts any of your applications, you shall be able to stop it via the respective area of Hepsia, or you can leave it working in passive mode, so it shall recognize attacks and shall still maintain a log for them, but will not stop them. You'll be able to analyze the logs later to find out what you can do to boost the protection of your sites as you will find information such as where an intrusion attempt came from, what site was attacked and based on what rule ModSecurity responded, etcetera. The rules we employ are commercial, thus they are regularly updated by a security company, but to be on the safe side, our administrators also add custom rules from time to time in order to react to any new threats they have identified.