ModSecurity is an efficient firewall for Apache web servers which is used to stop attacks towards web apps. It tracks the HTTP traffic to a certain site in real time and prevents any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to do that - as an illustration, attempting to log in to a script administration area without success a few times activates one rule, sending a request to execute a certain file which may result in getting access to the website triggers a different rule, and so forth. ModSecurity is amongst the best firewalls around and it'll preserve even scripts that aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Very thorough information about every intrusion attempt is recorded and the logs the firewall keeps are considerably more specific than the regular logs created by the Apache server, so you may later analyze them and determine whether you need to take extra measures in order to improve the safety of your script-driven sites.

ModSecurity in Shared Web Hosting

ModSecurity is provided with all shared web hosting web servers, so when you decide to host your websites with our company, they'll be shielded from a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any website if required, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You shall be able to view specific logs from your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the safety of our clients' websites seriously, we use a collection of commercial rules that we take from one of the leading firms that maintain this sort of rules. Our admins also include custom rules to make certain that your sites will be protected against as many risks as possible.

ModSecurity in Semi-dedicated Hosting

We have included ModSecurity by default inside all semi-dedicated hosting plans, so your web apps will be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts shall permit you to switch on or disable the firewall for any website with a click. You will also have the ability to activate a passive detection mode in which ModSecurity shall maintain a log of potential attacks without really stopping them. The comprehensive logs include things like the nature of the attack and what ModSecurity response that attack generated, where it came from, etcetera. The list of rules we use is constantly updated as to match any new threats that could appear on the Internet and it consists of both commercial rules that we get from a security corporation and custom-written ones that our admins add in case they discover a threat that's not present within the commercial list yet.