ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it detects an intrusion attempt, it prevents it. The firewall additionally maintains a more detailed log for the website visitors than any server does, so you will be able to keep track of what is happening with your sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it identifies if anyone is trying to log in to the administration area of a specific script several times or if a request is sent to execute a file with a specific command. In these circumstances these attempts set off the corresponding rules and the firewall program hinders the attempts instantly, then records comprehensive details about them within its logs. ModSecurity is among the best software firewalls on the market and it could easily protect your web apps against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.
ModSecurity in Shared Hosting
We provide ModSecurity with all shared hosting packages, so your web applications shall be resistant to malicious attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you shall be able to stop it through the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you'll find inside Hepsia are quite detailed and include information about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, etcetera. We employ a group of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to efficiently protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server packages that we offer feature ModSecurity and given that the firewall is turned on by default, any site which you create under a domain or a subdomain shall be protected right from the start. An independent section in the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall enable you to stop and start the firewall for any site or switch on a detection mode. With the last mentioned, ModSecurity won't take any action, but it'll still identify possible attacks and will keep all information within a log as if it were completely active. The logs could be found within the same section of the CP and they feature specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so on. The security rules which we employ on our machines are a mix between commercial ones from a security firm and custom ones developed by our system admins. For that reason, we offer increased security for your web programs as we can shield them from attacks even before security businesses release updates for brand new threats.
ModSecurity in VPS Servers
All VPS servers which are set up with the Hepsia Control Panel feature ModSecurity. The firewall is installed and switched on by default for all domains that are hosted on the web server, so there won't be anything special which you'll have to do to protect your sites. It'll take you simply a click to stop ModSecurity if needed or to switch on its passive mode so that it records what happens without taking any steps to prevent intrusions. You will be able to view the logs produced in active or passive mode via the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to deal with it, and so forth. We employ a mixture of commercial and custom rules so as to make sure that ModSecurity shall block out as many risks as possible, therefore boosting the security of your web apps as much as possible.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it as it is switched on by default each time you add a new domain or subdomain on your server. In case it disrupts some of your apps, you'll be able to stop it via the respective part of Hepsia, or you may leave it operating in passive mode, so it shall identify attacks and shall still keep a log for them, but shall not block them. You'll be able to examine the logs later to learn what you can do to boost the protection of your Internet sites as you shall find details such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity responded, and so forth. The rules which we use are commercial, thus they are frequently updated by a security firm, but to be on the safe side, our staff also include custom rules occasionally as to deal with any new threats they have discovered.