ModSecurity

: Terminology; AAAA Records; Access Log Manager; Additional RAM; Administration Services; Advanced Tools; Email Aliases; Antivirus Protection; APC; Applications Installer; Auto-reply Emails; Browsable Daily Backups; Catch-all Emails; CentOS; Live Chat Support; ClientExec Billing And Support Software; Genuine Cloud Architecture; CNAME Records; Web Hosting Control Panel; Hardware; CPanel Control Panel; CPU Share; Cron Jobs; Custom Error Pages; MX And A Records; Daily Data Back-up; Data Centers; Data Compression; Debian; Dedicated IP Address; Server Network Hardware; DirectAdmin Control Panel; Disk Space; Domain Backorders; DomainKeys Identified Mail; Domain Manager; Parked Domain Names; Domain Registration Transfer; Dreamweaver Compatible; Dropbox Backups; Email Forwarding; Email Manager; Enom Domain Name Reseller Account; EPP Transfer Protection; Error Log Viewer; Extensive Online Documentation; Extra Dedicated IPs; File Manager; FTP Accounts; FTP Manager; Full DNS Management; Full WHOIS Management; Guaranteed RAM; Hepsia Control Panel; Hosted Domain Names; Hotlink Protection; Htaccess Generator; WHOIS Shield; Imagemagick And GD Library; InnoDB; Installation And Troubleshooting; Instant Account Activation; Integrated Ticketing System; IonCube; IP Blocking; JailHost; Email Accounts; Mailing Lists; Mailing List Members; Managed Services Package; Marketing Tools; Money Back Guarantee; Memcached; Microsoft FPE; ModSecurity; Monitoring And Rebooting; MySQL And Load Stats; 2.5 Gbit Network Connectivity; Data Corruption; Node.js; No Overselling; NS Records; One-Hour Response Guarantee; Perl Modules; Password Protected Directories; Perl; PostgreSQL Databases; PgSQL Database Storage; Phone Support; PHP 4 And PHP 5 Support; PhpMyAdmin; PhpPgAdmin; Python; RAID; Registrar Lock; Server Reselling Options; Server Side Includes; Shared SSL IP; SiteMap Generator; SMTP Server; Spam Filters; SPF Protection; MySQL Databases; MySQL Database Storage; SRV Records; Data Caching; SSL Certificate Generator; Stable Linux With Apache; Subdomains; Customer Support; Bandwidth; TXT Records; Ubuntu; UPS And Diesel Back-up Generator; Service Uptime; URL Redirector; Varnish; VPN Traffic; Multiple Control Panels; Set-up Fee; Multiple OS; Full Root-level Access; SSH Telnet; Web Accelerators; Online Website Builder; Web And FTP Statistics; Web Installer; Webmail; Assisted Website Migration; Website Manager; Free Site Templates; Weekly Backup; Weekly OS Update; Zend Optimizer; ZFS Mails And MySQL; Get Started

ModSecurity is an effective firewall for Apache web servers which is employed to stop attacks towards web apps. It keeps track of the HTTP traffic to a given Internet site in real time and stops any intrusion attempts as soon as it detects them. The firewall relies on a set of rules to do this - as an example, trying to log in to a script admin area without success several times activates one rule, sending a request to execute a particular file which may result in gaining access to the Internet site triggers another rule, etcetera. ModSecurity is amongst the best firewalls available and it will protect even scripts which are not updated often since it can prevent attackers from employing known exploits and security holes. Incredibly thorough data about each and every intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the conventional logs provided by the Apache server, so you could later examine them and decide whether you need to take additional measures in order to improve the security of your script-driven Internet sites.

ModSecurity in Shared Web Hosting

We offer ModSecurity with all shared web hosting packages, so your Internet apps will be resistant to harmful attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you shall be able to stop it through the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you'll find inside Hepsia are incredibly detailed and offer info about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, and so forth. We employ a range of commercial rules that are constantly updated, but sometimes our administrators add custom rules as well so as to efficiently protect the Internet sites hosted on our machines.

ModSecurity in Semi-dedicated Hosting

Any web app that you install inside your new semi-dedicated hosting account will be protected by ModSecurity since the firewall is provided with all our hosting plans and is activated by default for any domain and subdomain which you include or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it fully, but you could also enable a passive mode, so the firewall will not block anything, but it shall still keep a record of potential attacks. This takes just a click and you shall be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, and so forth. The firewall uses two sets of rules on our machines - a commercial one that we get from a third-party web security company and a custom one that our admins update personally in order to respond to recently discovered risks as quickly as possible.

ModSecurity in VPS Hosting

Safety is extremely important to us, so we set up ModSecurity on all virtual private servers which are provided with the Hepsia Control Panel by default. The firewall could be managed through a dedicated section inside Hepsia and is turned on automatically when you add a new domain or generate a subdomain, so you won't need to do anything personally. You'll also be able to disable it or activate the so-called detection mode, so it will keep a log of potential attacks which you can later study, but will not prevent them. The logs in both passive and active modes offer details regarding the form of the attack and how it was stopped, what IP address it originated from and other valuable information which might help you to tighten the security of your sites by updating them or blocking IPs, as an example. Beyond the commercial rules that we get for ModSecurity from a third-party security enterprise, we also use our own rules because every now and then we find specific attacks which aren't yet present in the commercial package. This way, we could enhance the protection of your Virtual private server in a timely manner as opposed to awaiting an official update.

ModSecurity in Dedicated Web Hosting

ModSecurity is provided by default with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain that you host or subdomain you create on the web server. In case that a web app doesn't function correctly, you may either switch off the firewall or set it to function in passive mode. The latter means that ModSecurity will maintain a log of any potential attack which might happen, but shall not take any action to stop it. The logs produced in passive or active mode shall give you more details about the exact file that was attacked, the type of the attack and the IP it came from, etc. This information will allow you to decide what steps you can take to enhance the protection of your websites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules we use are updated regularly with a commercial bundle from a third-party security company we work with, but from time to time our admins add their own rules as well when they come across a new potential threat.