ModSecurity is a powerful firewall for Apache web servers that is employed to prevent attacks towards web apps. It monitors the HTTP traffic to a given website in real time and blocks any intrusion attempts the moment it detects them. The firewall relies on a set of rules to do this - for instance, attempting to log in to a script administrator area unsuccessfully several times triggers one rule, sending a request to execute a particular file which could result in accessing the site triggers a different rule, and so forth. ModSecurity is among the best firewalls out there and it will protect even scripts that are not updated on a regular basis because it can prevent attackers from using known exploits and security holes. Incredibly detailed information about each intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the conventional logs created by the Apache server, so you may later take a look at them and determine if you need to take extra measures in order to improve the protection of your script-driven sites.

ModSecurity in Hosting

We offer ModSecurity with all hosting solutions, so your Internet applications shall be resistant to malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you'd like, you'll be able to stop it via the respective area of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you shall find inside Hepsia are very detailed and feature info about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, and so on. We employ a group of commercial rules which are often updated, but sometimes our administrators add custom rules as well in order to efficiently protect the sites hosted on our machines.

ModSecurity in Dedicated Servers

If you choose to host your sites on a dedicated server with the Hepsia Control Panel, your web programs will be secured straight away as ModSecurity is provided with all Hepsia-based solutions. You'll be able to regulate the firewall effortlessly and if required, you'll be able to turn it off or activate its passive mode when it'll only keep a log of what is taking place without taking any action to stop potential attacks. The logs which you can find inside the very same section of the CP are incredibly detailed and include data about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, and so on. This info will enable you to take measures and improve the security of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our admins include every time they detect attacks that have not yet been included in the commercial pack.