ModSecurity is a highly effective firewall for Apache web servers which is used to prevent attacks toward web apps. It monitors the HTTP traffic to a certain site in real time and stops any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do this - for example, attempting to log in to a script administration area without success a few times sets off one rule, sending a request to execute a certain file that could result in getting access to the site triggers a different rule, and so forth. ModSecurity is amongst the best firewalls available on the market and it will protect even scripts that aren't updated regularly since it can prevent attackers from employing known exploits and security holes. Incredibly detailed data about every single intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the standard logs generated by the Apache server, so you can later examine them and determine if you need to take more measures so as to improve the protection of your script-driven Internet sites.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting solutions that we provide and it'll be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could switch on and deactivate it with just a click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to prevent them. The log for each of your websites will include detailed info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules we use are regularly updated and comprise of both commercial ones that we get from a third-party security company and custom ones our system admins include in the event that they detect a new kind of attacks. This way, the sites which you host here shall be a lot more secure without any action needed on your end.

ModSecurity in Semi-dedicated Hosting

Any web program which you set up inside your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall is provided with all our hosting plans and is turned on by default for any domain and subdomain that you add or create via your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated area in Hepsia where not only could you activate or deactivate it fully, but you may also activate a passive mode, so the firewall shall not stop anything, but it'll still maintain a record of possible attacks. This normally requires just a mouse click and you shall be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, etc. The firewall employs two sets of rules on our web servers - a commercial one that we get from a third-party web security firm and a custom one that our administrators update manually as to respond to recently discovered threats as quickly as possible.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting CP, so your web programs shall be secured from the second your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you'll be able to deactivate it with a mouse click from the corresponding section of Hepsia. You can also set it to operate in detection mode, so it'll maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs are available inside the exact same section and include information regarding the nature of the attack, what IP it came from and what ModSecurity rule was initiated to stop it. For optimum security, we use not only commercial rules from a business operating in the field of web security, but also custom ones that our administrators add personally so as to respond to new risks which are still not dealt with in the commercial rules.

ModSecurity in Dedicated Hosting

ModSecurity is offered as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain that you create on the hosting server. In the event that a web app does not work correctly, you can either turn off the firewall or set it to operate in passive mode. The latter means that ModSecurity shall keep a log of any possible attack which may take place, but shall not take any action to prevent it. The logs produced in active or passive mode will present you with more details about the exact file that was attacked, the type of the attack and the IP address it originated from, etc. This info will enable you to decide what steps you can take to enhance the security of your sites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we use are updated often with a commercial pack from a third-party security company we work with, but oftentimes our staff add their own rules also in case they come across a new potential threat.