ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its functionality and when it detects an intrusion attempt, it blocks it. The firewall additionally keeps a more detailed log for the site visitors than any web server does, so you'll manage to keep track of what is happening with your sites much better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it stops attacks. For instance, it identifies whether somebody is trying to log in to the administrator area of a particular script a number of times or if a request is sent to execute a file with a certain command. In these situations these attempts set off the corresponding rules and the firewall hinders the attempts immediately, then records detailed info about them within its logs. ModSecurity is among the very best software firewalls on the market and it can easily protect your web apps against many threats and vulnerabilities, particularly if you don’t update them or their plugins often.
ModSecurity in Shared Website Hosting
ModSecurity comes standard with all shared website hosting packages which we offer and it shall be switched on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with only a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your Internet sites shall feature in-depth information such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules we use are constantly updated and comprise of both commercial ones which we get from a third-party security business and custom ones which our system administrators include in the event that they detect a new kind of attacks. That way, the websites which you host here will be way more protected with no action expected on your end.
ModSecurity in Semi-dedicated Servers
ModSecurity is part of our semi-dedicated server packages and if you choose to host your sites with us, there will not be anything special you'll have to do since the firewall is switched on by default for all domains and subdomains that you include through your hosting Control Panel. If needed, you could disable ModSecurity for a certain site or switch on the so-called detection mode in which case the firewall will still function and record info, but won't do anything to stop possible attacks on your websites. Thorough logs shall be accessible inside your Control Panel and you shall be able to see what type of attacks occurred, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so on. We use two sorts of rules on our servers - commercial ones from a company which operates in the field of web security, and customized ones which our administrators occasionally include to respond to newly found threats in a timely manner.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting Control Panel, so your web apps shall be protected from the moment your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you could deactivate it with a click through the corresponding section of Hepsia. You can also set it to operate in detection mode, so it'll keep a comprehensive log of any potential attacks without taking any action to stop them. The logs are available in the very same section and include information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was activated to stop it. For maximum security, we use not only commercial rules from a business working in the field of web security, but also custom ones which our admins add personally so as to respond to new risks which are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers
When you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps will be protected immediately as ModSecurity is provided with all Hepsia-based packages. You shall be able to manage the firewall effortlessly and if required, you shall be able to turn it off or enable its passive mode when it'll only keep a log of what is happening without taking any action to prevent possible attacks. The logs which you'll find in the exact same section of the CP are extremely detailed and contain information about the attacker IP address, what site and file were attacked and in what way, what rule the firewall used to stop the intrusion, and so forth. This data will allow you to take measures and boost the security of your sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our administrators include when they recognize attacks that have not yet been included in the commercial pack.