ModSecurity is a powerful firewall for Apache web servers that's used to stop attacks towards web apps. It monitors the HTTP traffic to a particular website in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to do this - as an example, trying to log in to a script admin area unsuccessfully many times triggers one rule, sending a request to execute a particular file that may result in accessing the Internet site triggers another rule, and so forth. ModSecurity is one of the best firewalls available on the market and it will protect even scripts that aren't updated frequently as it can prevent attackers from employing known exploits and security holes. Incredibly thorough data about every single intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the regular logs provided by the Apache server, so you could later analyze them and decide if you need to take extra measures so as to increase the security of your script-driven Internet sites.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting packages that we supply and it shall be switched on automatically for any domain or subdomain which you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to switch on and disable it with a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to prevent them. The log for each of your Internet sites shall contain detailed information including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and incorporate both commercial ones that we get from a third-party security company and custom ones which our system admins include in the event that they detect a new kind of attacks. In this way, the Internet sites you host here shall be much more protected without any action needed on your end.

ModSecurity in Dedicated Servers

ModSecurity comes with all dedicated servers which are set up with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it as it's switched on by default each time you include a new domain or subdomain on your server. If it interferes with any of your applications, you'll be able to stop it through the respective section of Hepsia, or you may leave it working in passive mode, so it'll detect attacks and will still maintain a log for them, but shall not stop them. You may analyze the logs later to find out what you can do to enhance the safety of your sites since you'll find info such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity responded, etcetera. The rules we use are commercial, therefore they are frequently updated by a security firm, but to be on the safe side, our staff also add custom rules occasionally as to deal with any new threats they have discovered.