ModSecurity is an efficient firewall for Apache web servers which is employed to stop attacks against web apps. It tracks the HTTP traffic to a given website in real time and blocks any intrusion attempts the moment it identifies them. The firewall uses a set of rules to do that - for example, trying to log in to a script administration area unsuccessfully a few times sets off one rule, sending a request to execute a certain file that may result in gaining access to the Internet site triggers another rule, etcetera. ModSecurity is one of the best firewalls on the market and it'll protect even scripts that aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Very comprehensive information about every single intrusion attempt is recorded and the logs the firewall keeps are considerably more comprehensive than the standard logs provided by the Apache server, so you can later analyze them and decide if you need to take more measures so as to improve the safety of your script-driven Internet sites.

ModSecurity in Web Hosting

ModSecurity comes by default with all web hosting solutions which we supply and it will be switched on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and deactivate it with simply a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your sites will include comprehensive info including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are frequently updated and include both commercial ones which we get from a third-party security business and custom ones which our system administrators add in case that they detect a new sort of attacks. This way, the websites which you host here will be much more secure without any action expected on your end.

ModSecurity in Dedicated Hosting

ModSecurity is included with all dedicated servers which are integrated with our Hepsia Control Panel and you will not have to do anything specific on your end to use it since it's enabled by default every time you add a new domain or subdomain on your server. In the event that it interferes with any of your programs, you will be able to stop it via the respective part of Hepsia, or you could leave it operating in passive mode, so it'll recognize attacks and will still maintain a log for them, but won't stop them. You'll be able to look at the logs later to determine what you can do to increase the security of your Internet sites since you shall find details such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity reacted, and so on. The rules which we use are commercial, hence they are constantly updated by a security provider, but to be on the safe side, our admins also include custom rules occasionally as to respond to any new threats they have identified.