ModSecurity is an effective firewall for Apache web servers which is used to stop attacks against web applications. It monitors the HTTP traffic to a certain site in real time and stops any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to accomplish that - for instance, attempting to log in to a script administrator area unsuccessfully several times triggers one rule, sending a request to execute a certain file that may result in accessing the website triggers another rule, etcetera. ModSecurity is among the best firewalls available and it'll secure even scripts that are not updated frequently since it can prevent attackers from employing known exploits and security holes. Very detailed info about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more detailed than the conventional logs generated by the Apache server, so you could later take a look at them and decide whether you need to take additional measures so as to enhance the safety of your script-driven Internet sites.
ModSecurity in Website Hosting
ModSecurity comes by default with all website hosting
packages which we offer and it'll be turned on automatically for any domain or subdomain which you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and disable it with simply a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your Internet sites shall contain elaborate info such as the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules we use are regularly updated and comprise of both commercial ones which we get from a third-party security business and custom ones our system administrators add in case that they detect a new sort of attacks. In this way, the websites that you host here shall be much more secure without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
We have incorporated ModSecurity by default inside all semi-dedicated hosting
products, so your web applications will be protected whenever you install them under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will allow you to activate or disable the firewall for any website with a click. You will also have the ability to activate a passive detection mode with which ModSecurity shall maintain a log of potential attacks without actually stopping them. The thorough logs include things like the nature of the attack and what ModSecurity response that attack initiated, where it came from, etcetera. The list of rules that we employ is frequently updated as to match any new threats that could appear on the Internet and it consists of both commercial rules that we get from a security company and custom-written ones that our administrators include if they discover a threat which is not present within the commercial list yet.
ModSecurity in VPS
ModSecurity is pre-installed on all virtual private servers
which are provided with the Hepsia hosting CP, so your web programs shall be protected from the moment your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if needed, you can disable it with a mouse click through the corresponding section of Hepsia. You may also set it to function in detection mode, so it shall keep an extensive log of any possible attacks without taking any action to stop them. The logs can be found within the same section and offer info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For best security, we employ not only commercial rules from a firm operating in the field of web security, but also custom ones which our administrators include manually so as to react to new threats which are still not tackled in the commercial rules.
ModSecurity in Dedicated Hosting
ModSecurity comes with all dedicated servers
that are set up with our Hepsia CP and you won't need to do anything specific on your end to use it since it is turned on by default every time you add a new domain or subdomain on your hosting server. In case it interferes with some of your programs, you'll be able to stop it through the respective part of Hepsia, or you can leave it working in passive mode, so it will identify attacks and will still maintain a log for them, but won't block them. You could look at the logs later to determine what you can do to improve the security of your sites since you will find info such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, etcetera. The rules we use are commercial, hence they are constantly updated by a security firm, but to be on the safe side, our staff also add custom rules once in a while in order to respond to any new threats they have identified.