ModSecurity is a highly effective firewall for Apache web servers which is employed to prevent attacks towards web applications. It keeps track of the HTTP traffic to a particular website in real time and prevents any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to accomplish that - for example, trying to log in to a script administration area without success a few times activates one rule, sending a request to execute a certain file which may result in gaining access to the Internet site triggers a different rule, and so forth. ModSecurity is one of the best firewalls out there and it will preserve even scripts which are not updated frequently since it can prevent attackers from employing known exploits and security holes. Quite detailed information about each intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the regular logs provided by the Apache server, so you could later take a look at them and decide if you need to take more measures so as to enhance the security of your script-driven Internet sites.

ModSecurity in Shared Web Hosting

We provide ModSecurity with all shared web hosting plans, so your Internet apps will be resistant to malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you will be able to stop it via the respective section of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you'll discover within Hepsia are very detailed and include info about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, and so on. We employ a range of commercial rules that are regularly updated, but sometimes our admins include custom rules as well in order to efficiently protect the Internet sites hosted on our machines.

ModSecurity in VPS Hosting

All virtual private servers which are provided with the Hepsia CP feature ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the server, so there won't be anything special which you'll have to do to protect your sites. It shall take you just a click to stop ModSecurity if needed or to activate its passive mode so that it records what happens without taking any steps to prevent intrusions. You'll be able to see the logs generated in active or passive mode from the corresponding section of Hepsia and find out more about the type of the attack, where it originated from, what rule the firewall employed to handle it, etcetera. We employ a combination of commercial and custom rules so as to make certain that ModSecurity shall block out as many threats as possible, hence enhancing the protection of your web applications as much as possible.