ModSecurity is an efficient firewall for Apache web servers which is employed to stop attacks toward web apps. It tracks the HTTP traffic to a certain website in real time and prevents any intrusion attempts the instant it detects them. The firewall relies on a set of rules to do that - for instance, trying to log in to a script administrator area without success many times triggers one rule, sending a request to execute a particular file which could result in accessing the Internet site triggers a different rule, and so forth. ModSecurity is among the best firewalls out there and it'll preserve even scripts that are not updated often because it can prevent attackers from employing known exploits and security holes. Incredibly detailed information about every single intrusion attempt is recorded and the logs the firewall keeps are much more specific than the conventional logs provided by the Apache server, so you can later examine them and decide if you need to take additional measures so as to increase the protection of your script-driven websites.

ModSecurity in Shared Hosting

ModSecurity is provided with all shared hosting servers, so if you decide to host your websites with our company, they shall be resistant to a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you'll need to do on your end. You will be able to stop ModSecurity for any Internet site if necessary, or to activate a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You will be able to view comprehensive logs from your Hepsia CP including the IP where the attack came from, what the attacker planned to do and how ModSecurity dealt with the threat. Since we take the protection of our clients' websites seriously, we employ a collection of commercial rules which we get from one of the top firms that maintain this type of rules. Our administrators also include custom rules to make certain that your websites shall be resistant to as many threats as possible.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting packages which we offer feature ModSecurity and because the firewall is switched on by default, any Internet site that you create under a domain or a subdomain will be protected right from the start. An independent section inside the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it will allow you to start and stop the firewall for any Internet site or activate a detection mode. With the latter, ModSecurity won't take any action, but it shall still identify possible attacks and shall keep all info inside a log as if it were fully active. The logs could be found in the very same section of the Control Panel and they feature info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we employ on our servers are a mix between commercial ones from a security firm and custom ones made by our system admins. Consequently, we offer increased security for your web programs as we can defend them from attacks even before security firms release updates for new threats.

ModSecurity in VPS Hosting

ModSecurity is provided with all Hepsia-based virtual private servers which we offer and it shall be turned on automatically for every new domain or subdomain you add on the hosting server. In this way, any web app which you install shall be protected right from the start without doing anything personally on your end. The firewall may be managed from the section of the CP that has the same name. This is the location in whichyou'll be able to disable ModSecurity or activate its passive mode, so it won't take any action towards threats, but will still maintain a comprehensive log. The recorded info is available within the same area as well and you'll be able to see what IPs any attacks originated from so that you stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules which we employ on our servers are a mix between commercial ones that we get from a security company and custom ones which are included by our administrators to maximize the protection of any web applications hosted on our end.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided with all dedicated servers that are integrated with our Hepsia Control Panel and you will not need to do anything specific on your end to use it since it is turned on by default every time you add a new domain or subdomain on your server. In case it interferes with some of your apps, you shall be able to stop it through the respective section of Hepsia, or you can leave it operating in passive mode, so it'll identify attacks and will still maintain a log for them, but won't stop them. You can examine the logs later to determine what you can do to boost the safety of your websites as you'll find info such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity reacted, and so forth. The rules we employ are commercial, thus they are regularly updated by a security provider, but to be on the safe side, our administrators also add custom rules occasionally as to react to any new threats they have discovered.