ModSecurity

: Terminology; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Data Traffic; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Get Started

ModSecurity is a powerful firewall for Apache web servers which is used to prevent attacks toward web applications. It monitors the HTTP traffic to a given site in real time and prevents any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to do this - as an example, trying to log in to a script admin area without success many times activates one rule, sending a request to execute a specific file which could result in accessing the site triggers another rule, and so forth. ModSecurity is one of the best firewalls on the market and it will protect even scripts which are not updated on a regular basis since it can prevent attackers from using known exploits and security holes. Quite comprehensive data about every single intrusion attempt is recorded and the logs the firewall keeps are far more specific than the conventional logs generated by the Apache server, so you may later take a look at them and determine if you need to take extra measures in order to improve the protection of your script-driven websites.

: ModSecurity in Cloud Website Hosting

ModSecurity is available on all cloud website hosting servers, so if you choose to host your websites with our organization, they shall be protected against an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you will have to do on your end. You'll be able to stop ModSecurity for any website if required, or to switch on a detection mode, so all activity will be recorded, but the firewall will not take any real action. You will be able to view detailed logs through your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the safety of our clients' Internet sites very seriously, we employ a collection of commercial rules which we take from one of the best firms that maintain this kind of rules. Our administrators also include custom rules to make sure that your sites will be shielded from as many threats as possible.; ModSecurity in VPS Servers

ModSecurity is pre-installed on all VPS servers which are set up with the Hepsia hosting Control Panel, so your web programs shall be secured from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if necessary, you can deactivate it with a click via the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall maintain an extensive log of any potential attacks without taking any action to prevent them. The logs can be found inside the exact same section and offer information about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For maximum security, we use not simply commercial rules from a business operating in the field of web security, but also custom ones our administrators include manually so as to react to new risks that are still not addressed in the commercial rules.