ModSecurity is an effective firewall for Apache web servers that is used to stop attacks against web applications. It monitors the HTTP traffic to a specific Internet site in real time and stops any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do that - for instance, trying to log in to a script administration area without success a few times triggers one rule, sending a request to execute a particular file which may result in getting access to the website triggers another rule, and so forth. ModSecurity is among the best firewalls available on the market and it'll preserve even scripts which are not updated frequently as it can prevent attackers from employing known exploits and security holes. Quite comprehensive information about every single intrusion attempt is recorded and the logs the firewall keeps are considerably more comprehensive than the regular logs provided by the Apache server, so you could later take a look at them and determine whether you need to take additional measures so as to increase the security of your script-driven Internet sites.

ModSecurity in Cloud Hosting

ModSecurity is available on all cloud hosting web servers, so if you decide to host your Internet sites with our organization, they'll be protected against a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any Internet site if required, or to enable a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You will be able to view comprehensive logs via your Hepsia CP including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. As we take the safety of our clients' sites very seriously, we use a collection of commercial rules which we get from one of the top companies which maintain this kind of rules. Our administrators also include custom rules to make certain that your sites shall be protected against as many threats as possible.

ModSecurity in Dedicated Servers

All of our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any app that you upload or install shall be secured from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you will discover in the logs shall help you to secure your Internet sites better - the IP an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, etcetera. With this information, you can see if a site needs an update, whether you ought to block IPs from accessing your hosting server, and so forth. In addition to the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too whenever they find a new threat that's not yet in the commercial bundle.