ModSecurity is a powerful firewall for Apache web servers that's employed to stop attacks toward web applications. It tracks the HTTP traffic to a certain site in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to do that - for instance, trying to log in to a script admin area without success a few times triggers one rule, sending a request to execute a particular file which could result in accessing the website triggers a different rule, etc. ModSecurity is among the best firewalls available and it'll secure even scripts that are not updated often because it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive information about every single intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the conventional logs generated by the Apache server, so you may later analyze them and decide whether you need to take more measures in order to improve the protection of your script-driven sites.
ModSecurity in Shared Web Hosting
ModSecurity is available on all shared web hosting
servers, so when you opt to host your websites with our firm, they shall be shielded from an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any site if required, or to switch on a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs via your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the security of our clients' websites seriously, we employ a group of commercial rules which we get from one of the leading companies that maintain this kind of rules. Our administrators also add custom rules to make certain that your websites will be protected against as many threats as possible.
ModSecurity in Semi-dedicated Hosting
Any web application which you install in your new semi-dedicated hosting
account will be protected by ModSecurity since the firewall is included with all our hosting packages and is turned on by default for any domain and subdomain that you add or create using your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section in Hepsia where not only could you activate or deactivate it fully, but you could also enable a passive mode, so the firewall won't stop anything, but it will still maintain a record of possible attacks. This normally requires only a mouse click and you'll be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, and so on. The firewall uses 2 sets of rules on our machines - a commercial one that we get from a third-party web security company and a custom one which our admins update manually as to respond to newly discovered threats at the earliest opportunity.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers
which are provided with the Hepsia hosting Control Panel, so your web programs shall be secured from the second your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if needed, you'll be able to disable it with a mouse click through the corresponding section of Hepsia. You may also set it to work in detection mode, so it shall keep a detailed log of any possible attacks without taking any action to prevent them. The logs can be found within the exact same section and include info about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For best security, we use not simply commercial rules from a company operating in the field of web security, but also custom ones which our administrators add personally in order to respond to new threats that are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers Hosting
ModSecurity is offered as standard with all dedicated servers
that are set up with the Hepsia CP and is set to “Active” automatically for any domain that you host or subdomain you create on the hosting server. In the event that a web app doesn't function adequately, you may either disable the firewall or set it to function in passive mode. The second means that ModSecurity will maintain a log of any potential attack which might take place, but shall not take any action to prevent it. The logs created in active or passive mode shall provide you with additional details about the exact file that was attacked, the type of the attack and the IP address it originated from, etc. This data shall enable you to choose what actions you can take to boost the protection of your sites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules that we use are updated often with a commercial bundle from a third-party security enterprise we work with, but from time to time our admins add their own rules as well in case they identify a new potential threat.