ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Help Desk; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Order Now

ModSecurity is a highly effective firewall for Apache web servers that's used to stop attacks towards web apps. It tracks the HTTP traffic to a given Internet site in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to do that - as an illustration, attempting to log in to a script administrator area unsuccessfully several times triggers one rule, sending a request to execute a certain file which could result in gaining access to the Internet site triggers another rule, and so forth. ModSecurity is amongst the best firewalls available and it'll preserve even scripts which are not updated frequently because it can prevent attackers from employing known exploits and security holes. Incredibly thorough information about each and every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the standard logs provided by the Apache server, so you can later examine them and determine if you need to take more measures so as to enhance the protection of your script-driven sites.

ModSecurity in Cloud Website Hosting

ModSecurity is available on all cloud website hosting servers, so if you opt to host your sites with our business, they will be shielded from an array of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you will have to do on your end. You'll be able to stop ModSecurity for any website if needed, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You will be able to view specific logs from your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the protection of our customers' sites very seriously, we employ a collection of commercial rules that we get from one of the leading companies which maintain such rules. Our admins also include custom rules to make sure that your websites shall be resistant to as many risks as possible.

ModSecurity in Semi-dedicated Hosting

We've integrated ModSecurity by default in all semi-dedicated hosting packages, so your web applications will be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will allow you to activate or disable the firewall for any website with a click. You will also be able to activate a passive detection mode with which ModSecurity will keep a log of possible attacks without really preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack triggered, where it came from, and so forth. The list of rules that we use is constantly updated in order to match any new risks that might appear on the Internet and it includes both commercial rules that we get from a security firm and custom-written ones that our administrators add if they find a threat which is not present in the commercial list yet.

ModSecurity in VPS Web Hosting

All virtual private servers that are set up with the Hepsia Control Panel include ModSecurity. The firewall is installed and switched on by default for all domains that are hosted on the web server, so there will not be anything special which you will have to do to protect your sites. It'll take you just a mouse click to stop ModSecurity if needed or to switch on its passive mode so that it records what happens without taking any actions to stop intrusions. You'll be able to look at the logs produced in active or passive mode through the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall employed to take care of it, and so forth. We use a mix of commercial and custom rules in order to make certain that ModSecurity shall prevent as many threats as possible, hence increasing the protection of your web applications as much as possible.

ModSecurity in Dedicated Servers Hosting

If you decide to host your websites on a dedicated server with the Hepsia Control Panel, your web apps shall be protected right away as ModSecurity is supplied with all Hepsia-based packages. You will be able to manage the firewall with ease and if necessary, you will be able to turn it off or switch on its passive mode when it will only maintain a log of what's going on without taking any action to prevent possible attacks. The logs that you will find inside the same section of the CP are extremely detailed and feature details about the attacker IP, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, etc. This info shall allow you to take measures and enhance the security of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our staff add every time they detect attacks that haven't yet been included inside the commercial pack.