ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and in case it discovers an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the traffic than any server does, so you'll manage to keep an eye on what's going on with your Internet sites a lot better than if you rely only on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it identifies whether someone is attempting to log in to the admin area of a certain script a number of times or if a request is sent to execute a file with a particular command. In these circumstances these attempts trigger the corresponding rules and the firewall software blocks the attempts in real time, then records comprehensive info about them in its logs. ModSecurity is one of the very best software firewalls on the market and it can easily protect your web applications against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity is provided with all shared hosting web servers, so if you choose to host your sites with our organization, they shall be protected against a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you'll need to do on your end. You'll be able to stop ModSecurity for any site if required, or to activate a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You shall be able to view specific logs through your Hepsia Control Panel including the IP where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. As we take the protection of our clients' sites very seriously, we use a collection of commercial rules that we take from one of the best companies that maintain this sort of rules. Our administrators also include custom rules to make sure that your sites shall be protected against as many risks as possible.
ModSecurity in Semi-dedicated Servers
We've included ModSecurity by default inside all semi-dedicated server products, so your web apps will be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will allow you to enable or turn off the firewall for any Internet site with a click. You will also have the ability to activate a passive detection mode through which ModSecurity shall keep a log of potential attacks without really preventing them. The detailed logs contain the nature of the attack and what ModSecurity response that attack generated, where it originated from, etc. The list of rules we use is regularly updated as to match any new risks that might appear on the Internet and it includes both commercial rules that we get from a security firm and custom-written ones that our administrators include in case they find a threat that's not present inside the commercial list yet.
ModSecurity in VPS Servers
Security is vital to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or generate a subdomain, so you will not have to do anything by hand. You will also be able to disable it or switch on the so-called detection mode, so it will maintain a log of potential attacks which you can later analyze, but will not prevent them. The logs in both passive and active modes include details regarding the kind of the attack and how it was stopped, what IP it originated from and other valuable information which may help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. In addition to the commercial rules which we get for ModSecurity from a third-party security firm, we also implement our own rules as from time to time we find specific attacks which aren't yet present within the commercial group. This way, we could increase the protection of your VPS right away instead of awaiting an official update.
ModSecurity in Dedicated Servers
When you opt to host your sites on a dedicated server with the Hepsia CP, your web apps will be secured right from the start since ModSecurity is available with all Hepsia-based solutions. You will be able to manage the firewall without difficulty and if needed, you'll be able to turn it off or switch on its passive mode when it shall only maintain a log of what's happening without taking any action to prevent potential attacks. The logs that you can find inside the exact same section of the Control Panel are really detailed and contain info about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, and so on. This info will allow you to take measures and increase the security of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our admins add when they detect attacks which haven't yet been included inside the commercial pack.