ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its functionality and if it discovers an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the website visitors than any web server does, so you will be able to keep an eye on what's happening with your websites better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it stops attacks. For instance, it recognizes if somebody is attempting to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a specific command. In such circumstances these attempts set off the corresponding rules and the firewall program hinders the attempts right away, and then records comprehensive info about them within its logs. ModSecurity is one of the very best software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity is provided with all shared hosting servers, so when you opt to host your sites with our organization, they'll be protected against an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you shall need to do on your end. You will be able to stop ModSecurity for any site if needed, or to enable a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You will be able to view specific logs via your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. As we take the safety of our customers' sites seriously, we employ a group of commercial rules which we get from one of the best firms that maintain this kind of rules. Our admins also add custom rules to make sure that your sites will be shielded from as many threats as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server solutions that we offer come with ModSecurity and given that the firewall is switched on by default, any Internet site that you build under a domain or a subdomain will be secured straight away. An individual section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to stop and start the firewall for any site or enable a detection mode. With the latter, ModSecurity shall not take any action, but it shall still detect possible attacks and will keep all data in a log as if it were fully active. The logs can be found in the exact same section of the Control Panel and they offer info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules that we use on our servers are a mix of commercial ones from a security business and custom ones developed by our system administrators. Consequently, we provide higher security for your web programs as we can defend them from attacks before security firms release updates for new threats.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are set up with the Hepsia hosting Control Panel, so your web programs shall be protected from the second your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if necessary, you'll be able to disable it with a mouse click from the corresponding section of Hepsia. You may also set it to operate in detection mode, so it shall maintain a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found inside the exact same section and provide info about the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For best security, we employ not just commercial rules from a business working in the field of web security, but also custom ones which our admins include personally in order to react to new risks that are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you will not have to do anything specific on your end to use it as it is enabled by default each time you add a new domain or subdomain on your web server. In case it disrupts some of your apps, you'll be able to stop it via the respective part of Hepsia, or you can leave it in passive mode, so it shall identify attacks and shall still keep a log for them, but shall not stop them. You may look at the logs later to determine what you can do to boost the protection of your Internet sites as you'll find details such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity reacted, etcetera. The rules we use are commercial, hence they are frequently updated by a security provider, but to be on the safe side, our admins also include custom rules from time to time as to react to any new threats they have identified.