ModSecurity is an effective firewall for Apache web servers that is used to stop attacks toward web apps. It monitors the HTTP traffic to a particular Internet site in real time and blocks any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to do this - for example, trying to log in to a script administration area without success a few times activates one rule, sending a request to execute a specific file which could result in accessing the website triggers a different rule, and so on. ModSecurity is among the best firewalls available on the market and it will preserve even scripts which aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Very detailed data about each and every intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the standard logs created by the Apache server, so you may later analyze them and determine if you need to take extra measures so as to boost the safety of your script-driven websites.
ModSecurity in Shared Hosting
ModSecurity is supplied with all shared hosting machines, so when you opt to host your Internet sites with our company, they will be protected against a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you'll have to do on your end. You will be able to stop ModSecurity for any website if required, or to switch on a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You'll be able to view specific logs through your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the protection of our customers' websites very seriously, we employ a group of commercial rules that we get from one of the best companies that maintain this sort of rules. Our administrators also add custom rules to make certain that your Internet sites will be protected against as many threats as possible.
ModSecurity in Semi-dedicated Servers
ModSecurity is part of our semi-dedicated server packages and if you decide to host your Internet sites with us, there won't be anything special you'll have to do as the firewall is activated by default for all domains and subdomains that you include using your hosting Control Panel. If required, you can disable ModSecurity for a certain Internet site or activate the so-called detection mode in which case the firewall shall still operate and record data, but shall not do anything to stop possible attacks on your Internet sites. In depth logs shall be available in your CP and you'll be able to see what type of attacks occurred, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so forth. We use 2 types of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones which our administrators often include to respond to newly discovered risks on time.
ModSecurity in VPS Servers
ModSecurity is provided with all Hepsia-based VPS servers which we offer and it'll be switched on automatically for any new domain or subdomain you include on the web server. In this way, any web app you install shall be protected right away without doing anything by hand on your end. The firewall may be managed from the section of the Control Panel that has the same name. This is the place whereyou can disable ModSecurity or enable its passive mode, so it will not take any action toward threats, but will still maintain a thorough log. The recorded info is available inside the same area as well and you shall be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules we employ on our servers are a mix between commercial ones that we obtain from a security company and custom ones that are included by our admins to improve the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers
All our dedicated servers which are installed with the Hepsia hosting Control Panel feature ModSecurity, so any app which you upload or install shall be properly secured from the very beginning and you'll not need to bother about common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or activate a detection mode so that it records information about intrusions, but doesn't take actions to prevent them. What you shall see in the logs shall enable you to to secure your websites better - the IP address an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this information, you'll be able to see whether a website needs an update, if you should block IPs from accessing your hosting server, etc. In addition to the third-party commercial security rules for ModSecurity which we use, our admins add custom ones as well whenever they come across a new threat which is not yet in the commercial bundle.