ModSecurity is a powerful firewall for Apache web servers that's used to stop attacks toward web applications. It tracks the HTTP traffic to a specific website in real time and prevents any intrusion attempts the moment it detects them. The firewall relies on a set of rules to do this - as an example, attempting to log in to a script administration area without success several times activates one rule, sending a request to execute a particular file which could result in accessing the website triggers another rule, etcetera. ModSecurity is among the best firewalls around and it'll preserve even scripts which aren't updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Very thorough data about each intrusion attempt is recorded and the logs the firewall maintains are far more specific than the regular logs provided by the Apache server, so you can later examine them and decide whether you need to take more measures so as to enhance the protection of your script-driven Internet sites.

ModSecurity in Shared Hosting

We offer ModSecurity with all shared hosting solutions, so your web apps will be shielded from malicious attacks. The firewall is switched on as standard for all domains and subdomains, but in case you'd like, you will be able to stop it through the respective section of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you shall discover in Hepsia are extremely detailed and offer data about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, and so forth. We employ a set of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to better protect the sites hosted on our machines.

ModSecurity in Dedicated Servers Hosting

When you decide to host your websites on a dedicated server with the Hepsia Control Panel, your web programs shall be secured immediately since ModSecurity is available with all Hepsia-based packages. You'll be able to regulate the firewall easily and if required, you shall be able to turn it off or activate its passive mode when it will only maintain a log of what is going on without taking any action to stop possible attacks. The logs which you can find inside the very same section of the CP are extremely detailed and include data about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, etcetera. This data shall enable you to take measures and improve the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our admins include whenever they detect attacks which have not yet been included in the commercial pack.