ModSecurity is an efficient firewall for Apache web servers that's used to prevent attacks toward web apps. It tracks the HTTP traffic to a particular Internet site in real time and stops any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do this - as an illustration, attempting to log in to a script admin area without success a few times activates one rule, sending a request to execute a specific file which could result in gaining access to the website triggers a different rule, and so forth. ModSecurity is one of the best firewalls out there and it will preserve even scripts which are not updated frequently as it can prevent attackers from employing known exploits and security holes. Incredibly detailed data about every single intrusion attempt is recorded and the logs the firewall maintains are considerably more specific than the conventional logs generated by the Apache server, so you could later examine them and decide whether you need to take more measures in order to improve the security of your script-driven sites.

ModSecurity in Hosting

ModSecurity is available with each hosting solution which we provide and it's activated by default for any domain or subdomain that you include via your Hepsia Control Panel. If it disrupts any of your applications or you'd like to disable it for whatever reason, you'll be able to do this through the ModSecurity section of Hepsia with just a click. You can also use a passive mode, so the firewall will identify possible attacks and maintain a log, but won't take any action. You could see detailed logs in the exact same section, including the IP where the attack originated from, exactly what the attacker aimed to do and at what time, what ModSecurity did, etcetera. For optimum security of our clients we use a collection of commercial firewall rules combined with custom ones which are added by our system admins.

ModSecurity in Semi-dedicated Hosting

Any web application which you install in your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain that you include or create through your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not only could you activate or deactivate it completely, but you could also switch on a passive mode, so the firewall won't stop anything, but it shall still keep an archive of possible attacks. This normally requires just a click and you will be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, and so on. The firewall employs two groups of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one which our administrators update personally in order to respond to newly discovered risks as soon as possible.

ModSecurity in Dedicated Hosting

When you opt to host your Internet sites on a dedicated server with the Hepsia CP, your web apps will be secured right away as ModSecurity is supplied with all Hepsia-based packages. You will be able to manage the firewall without difficulty and if necessary, you shall be able to turn it off or switch on its passive mode when it will only keep a log of what's going on without taking any action to prevent potential attacks. The logs which you can find inside the same section of the Control Panel are really detailed and contain information about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so on. This info shall allow you to take measures and increase the protection of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our administrators include whenever they detect attacks which have not yet been included inside the commercial pack.