ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Monthly Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Join us

ModSecurity is a highly effective firewall for Apache web servers that's employed to prevent attacks toward web applications. It monitors the HTTP traffic to a particular website in real time and blocks any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to do this - as an example, trying to log in to a script administration area without success many times triggers one rule, sending a request to execute a certain file which may result in getting access to the website triggers a different rule, and so on. ModSecurity is among the best firewalls available and it'll protect even scripts that are not updated frequently because it can prevent attackers from using known exploits and security holes. Very comprehensive info about each and every intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the conventional logs created by the Apache server, so you may later analyze them and decide whether you need to take extra measures so as to enhance the security of your script-driven websites.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting packages that we offer and it'll be turned on automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has three different modes, so you can activate and disable it with simply a click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for each of your Internet sites will include in-depth info including the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules we use are constantly updated and comprise of both commercial ones we get from a third-party security business and custom ones our system administrators add in the event that they detect a new kind of attacks. This way, the websites that you host here shall be way more secure with no action needed on your end.

ModSecurity in Semi-dedicated Hosting

We've incorporated ModSecurity as a standard inside all semi-dedicated hosting products, so your web applications shall be protected the instant you set them up under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will permit you to activate or disable the firewall for any site with a mouse click. You'll also have the ability to activate a passive detection mode in which ModSecurity shall keep a log of possible attacks without really stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack caused, where it originated from, and so on. The list of rules we use is constantly updated in order to match any new risks that could appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones which our administrators add in case they find a threat that is not present in the commercial list yet.

ModSecurity in VPS Hosting

All virtual private servers which are set up with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the machine, so there will not be anything special that you'll need to do to protect your sites. It'll take you a click to stop ModSecurity if necessary or to activate its passive mode so that it records what happens without taking any actions to stop intrusions. You'll be able to see the logs produced in passive or active mode from the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to handle it, and so forth. We use a mixture of commercial and custom rules so as to make sure that ModSecurity will prevent as many risks as possible, therefore improving the security of your web apps as much as possible.

ModSecurity in Dedicated Web Hosting

ModSecurity is included with all dedicated servers which are set up with our Hepsia CP and you will not have to do anything specific on your end to use it since it is switched on by default each time you include a new domain or subdomain on your server. If it interferes with some of your applications, you'll be able to stop it through the respective part of Hepsia, or you can leave it in passive mode, so it will detect attacks and shall still maintain a log for them, but won't stop them. You may analyze the logs later to learn what you can do to improve the protection of your websites as you'll find info such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity responded, and so on. The rules we employ are commercial, hence they are regularly updated by a security firm, but to be on the safe side, our administrators also add custom rules every now and then in order to deal with any new threats they have found.