ModSecurity

: Definitions; Disk Space; Hepsia Control Panel; Hosted Domains; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Customer Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Get Started

ModSecurity is a highly effective firewall for Apache web servers that is employed to prevent attacks towards web applications. It keeps track of the HTTP traffic to a given Internet site in real time and prevents any intrusion attempts as soon as it detects them. The firewall relies on a set of rules to accomplish that - for instance, attempting to log in to a script admin area without success many times sets off one rule, sending a request to execute a certain file that may result in gaining access to the Internet site triggers another rule, etcetera. ModSecurity is among the best firewalls available and it'll preserve even scripts which aren't updated regularly as it can prevent attackers from employing known exploits and security holes. Incredibly detailed information about every intrusion attempt is recorded and the logs the firewall keeps are much more comprehensive than the regular logs created by the Apache server, so you can later take a look at them and determine if you need to take additional measures so as to boost the protection of your script-driven sites.

ModSecurity in Cloud Website Hosting

ModSecurity comes standard with all cloud website hosting plans which we provide and it'll be activated automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you can activate and disable it with just a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites will include in-depth information including the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules which we use are regularly updated and consist of both commercial ones we get from a third-party security firm and custom ones that our system administrators add in the event that they detect a new kind of attacks. In this way, the Internet sites that you host here will be a lot more secure with no action required on your end.