ModSecurity is a highly effective firewall for Apache web servers which is employed to prevent attacks toward web apps. It keeps track of the HTTP traffic to a particular website in real time and blocks any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script administrator area without success several times sets off one rule, sending a request to execute a specific file that may result in getting access to the website triggers a different rule, and so forth. ModSecurity is amongst the best firewalls on the market and it'll secure even scripts that are not updated on a regular basis as it can prevent attackers from using known exploits and security holes. Incredibly comprehensive information about every intrusion attempt is recorded and the logs the firewall keeps are far more specific than the regular logs generated by the Apache server, so you may later analyze them and determine whether you need to take extra measures in order to boost the protection of your script-driven Internet sites.

ModSecurity in Website Hosting

ModSecurity is provided with all website hosting web servers, so when you decide to host your websites with our business, they will be resistant to a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you will have to do on your end. You shall be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs using your Hepsia Control Panel including the IP where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. As we take the security of our clients' sites seriously, we use a group of commercial rules which we take from one of the best companies which maintain this type of rules. Our administrators also include custom rules to make certain that your Internet sites will be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server plans which we offer come with ModSecurity and because the firewall is turned on by default, any website you set up under a domain or a subdomain will be protected right from the start. An independent section within the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it'll permit you to stop and start the firewall for any website or enable a detection mode. With the last option, ModSecurity shall not take any action, but it'll still detect possible attacks and shall keep all info within a log as if it were completely active. The logs could be found within the same section of the CP and they feature information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules which we use on our web servers are a mix between commercial ones from a security company and custom ones developed by our system admins. For that reason, we provide increased security for your web programs as we can defend them from attacks even before security corporations release updates for completely new threats.

ModSecurity in Dedicated Servers

ModSecurity is provided as standard with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain that you create on the web server. In the event that a web app does not function adequately, you may either disable the firewall or set it to operate in passive mode. The second means that ModSecurity shall keep a log of any possible attack which may occur, but won't take any action to prevent it. The logs generated in passive or active mode will give you additional details about the exact file which was attacked, the form of the attack and the IP address it originated from, etc. This data will allow you to decide what measures you can take to boost the protection of your Internet sites, including blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we use are updated regularly with a commercial bundle from a third-party security provider we work with, but occasionally our administrators add their own rules also in the event that they identify a new potential threat.