ModSecurity is an efficient firewall for Apache web servers that's employed to stop attacks against web applications. It keeps track of the HTTP traffic to a given site in real time and stops any intrusion attempts the instant it discovers them. The firewall uses a set of rules to do this - for example, attempting to log in to a script administration area without success several times triggers one rule, sending a request to execute a specific file that may result in accessing the website triggers a different rule, etc. ModSecurity is one of the best firewalls available and it will protect even scripts that aren't updated regularly since it can prevent attackers from using known exploits and security holes. Incredibly detailed data about each and every intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the regular logs generated by the Apache server, so you can later examine them and decide if you need to take additional measures so as to improve the security of your script-driven Internet sites.
ModSecurity in Hosting
ModSecurity is available on all hosting web servers, so when you choose to host your websites with our company, they shall be protected against a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any site if required, or to activate a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You shall be able to view specific logs using your Hepsia CP including the IP address where the attack came from, what the attacker planned to do and how ModSecurity handled the threat. As we take the security of our customers' sites seriously, we employ a group of commercial rules which we get from one of the best companies which maintain this sort of rules. Our admins also include custom rules to ensure that your Internet sites shall be protected against as many threats as possible.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting packages and if you decide to host your sites with us, there shall not be anything special you'll need to do given that the firewall is switched on by default for all domains and subdomains you add via your hosting Control Panel. If necessary, you could disable ModSecurity for a particular Internet site or turn on the so-called detection mode in which case the firewall shall still work and record info, but shall not do anything to prevent potential attacks against your sites. In depth logs shall be accessible inside your CP and you shall be able to see what sort of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks originated from, etc. We use two kinds of rules on our servers - commercial ones from a business that operates in the field of web security, and customized ones that our administrators sometimes add to respond to newly identified threats on time.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting CP, so your web applications will be secured from the second your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you could disable it with a click through the corresponding section of Hepsia. You could also set it to function in detection mode, so it'll keep a detailed log of any potential attacks without taking any action to prevent them. The logs can be found inside the exact same section and include information about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For maximum security, we use not just commercial rules from a business working in the field of web security, but also custom ones that our admins include personally in order to react to new threats which are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers Hosting
ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain which you create on the web server. In the event that a web application doesn't function correctly, you could either disable the firewall or set it to operate in passive mode. The second means that ModSecurity shall keep a log of any possible attack that might happen, but won't take any action to prevent it. The logs created in active or passive mode shall offer you additional details about the exact file that was attacked, the form of the attack and the IP address it came from, etcetera. This data will enable you to decide what actions you can take to increase the security of your sites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we employ are updated constantly with a commercial pack from a third-party security company we work with, but occasionally our administrators include their own rules too in the event that they discover a new potential threat.