ModSecurity is a powerful firewall for Apache web servers that's used to prevent attacks towards web apps. It monitors the HTTP traffic to a particular site in real time and blocks any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to accomplish that - for instance, attempting to log in to a script administrator area unsuccessfully several times sets off one rule, sending a request to execute a particular file that may result in accessing the website triggers another rule, and so on. ModSecurity is among the best firewalls on the market and it will protect even scripts that aren't updated frequently since it can prevent attackers from using known exploits and security holes. Incredibly comprehensive information about each and every intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the conventional logs created by the Apache server, so you could later analyze them and decide if you need to take extra measures so as to enhance the protection of your script-driven websites.

ModSecurity in Web Hosting

ModSecurity is provided with all web hosting machines, so when you choose to host your sites with our organization, they'll be resistant to a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you will need to do on your end. You'll be able to stop ModSecurity for any website if required, or to enable a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You'll be able to view detailed logs through your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity handled the threat. As we take the safety of our customers' Internet sites very seriously, we employ a group of commercial rules that we get from one of the top firms that maintain this sort of rules. Our admins also add custom rules to make certain that your sites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server packages and if you opt to host your websites with our company, there won't be anything special you'll need to do as the firewall is activated by default for all domains and subdomains that you add via your hosting CP. If needed, you'll be able to disable ModSecurity for a given website or enable the so-called detection mode in which case the firewall will still function and record data, but won't do anything to stop potential attacks against your Internet sites. Detailed logs will be readily available inside your CP and you shall be able to see what sort of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, and so on. We employ 2 types of rules on our servers - commercial ones from a business that operates in the field of web security, and customized ones that our administrators often add to respond to newly identified risks on time.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to use it since it's switched on by default whenever you add a new domain or subdomain on your web server. If it disrupts any of your apps, you'll be able to stop it via the respective part of Hepsia, or you can leave it in passive mode, so it will recognize attacks and shall still maintain a log for them, but shall not prevent them. You may analyze the logs later to learn what you can do to increase the security of your websites as you'll find info such as where an intrusion attempt came from, what website was attacked and based on what rule ModSecurity reacted, and so on. The rules which we employ are commercial, hence they're regularly updated by a security provider, but to be on the safe side, our staff also include custom rules once in a while as to respond to any new threats they have found.