ModSecurity

: Glossary; AAAA Records; Access Log Manager; Additional RAM; Administration Services; Advanced Tools; Email Aliases; Antivirus Protection; APC; App Installer; Auto-reply Emails; Browsable Daily Backups; Catch-all Emails; CentOS; Live Chat Support; ClientExec Billing And Support Software; Genuine Cloud Architecture; CNAME Records; Web Hosting Control Panel; Hardware; CPanel Control Panel; CPU Share; Cron Jobs; Custom Error Pages; MX And A Records; Daily Data Back-up; Data Centers; Data Compression; Debian; Dedicated IP Address; Server Network Hardware; DirectAdmin Control Panel; Disk Space; Domain Backorders; DomainKeys Identified Mail; Domain Manager; Parked Domains; Domain Registration Transfer; Dreamweaver Compatibility; Dropbox Backups; Email Forwarding; Email Manager; Enom Domain Name Reseller Account; EPP Transfer Protection; Error Log Viewer; Extensive Online Documentation; Extra Dedicated IPs; File Manager; FTP Accounts; FTP Manager; DNS Management; Full WHOIS Management; Guaranteed RAM; Hepsia Control Panel; Domains Hosted; Hotlink Protection; Htaccess Generator; WHOIS Guard; Imagemagick And GD Library; InnoDB; Installation And Troubleshooting; Instant Account Activation; Integrated Ticketing System; IonCube; IP Blocking; JailHost; Email Accounts; Mailing Lists; Mailing List Members; Managed Services Package; Marketing Tools; Money Back Guarantee; Memcached; Microsoft Frontpage Extensions; ModSecurity; Monitoring And Rebooting; MySQL And Load Stats; 2.5 Gbit Network Connectivity; Data Corruption; Node.js; No Overselling; NS Records; One-Hour Response Guarantee; Perl Modules; Password Protected Directories; Perl Scripting; PostgreSQL Databases; PostgreSQL Database Storage; Phone Support; PHP 4 And PHP 5 Support; PhpMyAdmin; PhpPgAdmin; Python; RAID; Registrar Lock; Server Reselling Options; Serverside Includes; Shared SSL IP; SiteMap Generator; SMTP Server; Spam Filters; SPF Protection; MySQL Databases; MySQL Database Storage; SRV Records; Data Caching; SSL Certificate Generator; Stable Linux With Apache; Subdomains; Customer Support; Bandwidth; TXT Records; Ubuntu; UPS And Diesel Back-up Generator; Service Uptime Guarantee; URL Redirection; Varnish; VPN Traffic; Multiple Control Panels; Setup Fee; Multiple OS; Full Root-level Access; SSH Telnet; Web Accelerators; Online Website Builder; Web And FTP Statistics; Web Installer; Webmail; Assisted Website Migration; Website Manager; Free Website Templates; Weekly Backup; Weekly OS Update; Zend Optimizer; ZFS Mails And MySQL; Buy Now

ModSecurity is a powerful firewall for Apache web servers that is employed to prevent attacks toward web apps. It monitors the HTTP traffic to a given site in real time and stops any intrusion attempts the instant it identifies them. The firewall uses a set of rules to do this - for example, attempting to log in to a script admin area without success many times sets off one rule, sending a request to execute a specific file which may result in getting access to the Internet site triggers a different rule, etc. ModSecurity is one of the best firewalls available on the market and it will secure even scripts that aren't updated regularly as it can prevent attackers from using known exploits and security holes. Incredibly comprehensive data about each and every intrusion attempt is recorded and the logs the firewall keeps are considerably more comprehensive than the standard logs generated by the Apache server, so you could later take a look at them and decide if you need to take more measures so as to enhance the safety of your script-driven websites.

ModSecurity in Shared Hosting

ModSecurity is offered with each and every shared hosting package that we provide and it's turned on by default for every domain or subdomain which you add through your Hepsia CP. In case it interferes with any of your apps or you would like to disable it for any reason, you'll be able to do that through the ModSecurity section of Hepsia with just a mouse click. You may also use a passive mode, so the firewall will detect potential attacks and keep a log, but shall not take any action. You can see detailed logs in the same section, including the IP address where the attack came from, what precisely the attacker aimed to do and at what time, what ModSecurity did, and so forth. For optimum protection of our customers we use a set of commercial firewall rules mixed with custom ones which are provided by our system admins.

ModSecurity in Semi-dedicated Servers

All semi-dedicated server solutions which we offer include ModSecurity and since the firewall is enabled by default, any site you create under a domain or a subdomain will be protected right from the start. An individual section within the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to start and stop the firewall for any Internet site or switch on a detection mode. With the last option, ModSecurity will not take any action, but it'll still recognize possible attacks and shall keep all data inside a log as if it were fully active. The logs could be found within the very same section of the Control Panel and they feature info about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so forth. The security rules we employ on our servers are a mix between commercial ones from a security company and custom ones created by our system admins. As a result, we provide greater security for your web applications as we can shield them from attacks before security companies release updates for brand new threats.

ModSecurity in VPS Servers

All VPS servers which are set up with the Hepsia CP include ModSecurity. The firewall is installed and switched on by default for all domains which are hosted on the web server, so there shall not be anything special that you will have to do to protect your Internet sites. It'll take you simply a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what goes on without taking any steps to prevent intrusions. You shall be able to see the logs produced in active or passive mode from the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall employed to take care of it, etcetera. We use a mix of commercial and custom rules in order to make sure that ModSecurity shall block as many risks as possible, hence improving the security of your web programs as much as possible.

ModSecurity in Dedicated Servers

All of our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any application which you upload or install shall be properly secured from the very beginning and you'll not need to stress about common attacks or vulnerabilities. A separate section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you'll see in the logs can easily help you to secure your Internet sites better - the IP an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this data, you can see if a website needs an update, if you need to block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too whenever they discover a new threat which is not yet included in the commercial bundle.