ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and if it identifies an intrusion attempt, it blocks it. The firewall furthermore keeps a more detailed log for the website visitors than any web server does, so you'll be able to keep track of what's going on with your Internet sites a lot better than if you rely only on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it identifies whether anyone is attempting to log in to the administration area of a given script several times or if a request is sent to execute a file with a specific command. In such instances these attempts set off the corresponding rules and the firewall hinders the attempts in real time, and then records in-depth info about them in its logs. ModSecurity is among the best software firewalls out there and it can protect your web applications against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
ModSecurity in Shared Hosting
ModSecurity comes by default with all shared hosting
plans which we provide and it shall be switched on automatically for any domain or subdomain which you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you can switch on and disable it with a click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to stop them. The log for each of your Internet sites shall contain elaborate info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules which we use are frequently updated and incorporate both commercial ones which we get from a third-party security firm and custom ones that our system admins add in case that they detect a new kind of attacks. In this way, the Internet sites which you host here shall be far more secure without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting
plans which we offer include ModSecurity and since the firewall is enabled by default, any site that you build under a domain or a subdomain shall be secured right from the start. A separate section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it will permit you to start and stop the firewall for any Internet site or activate a detection mode. With the last option, ModSecurity shall not take any action, but it shall still recognize possible attacks and will keep all info in a log as if it were completely active. The logs could be found inside the exact same section of the CP and they feature specifics about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so forth. The security rules that we employ on our machines are a mix between commercial ones from a security firm and custom ones developed by our system admins. Consequently, we provide greater security for your web programs as we can shield them from attacks before security corporations release updates for new threats.
ModSecurity in VPS Web Hosting
Safety is essential to us, so we set up ModSecurity on all virtual private servers
that are provided with the Hepsia CP by default. The firewall could be managed through a dedicated section inside Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you won't need to do anything by hand. You will also be able to deactivate it or activate the so-called detection mode, so it'll maintain a log of potential attacks which you can later examine, but shall not block them. The logs in both passive and active modes offer information regarding the kind of the attack and how it was eliminated, what IP it originated from and other important information which could help you to tighten the security of your sites by updating them or blocking IPs, for example. On top of the commercial rules that we get for ModSecurity from a third-party security firm, we also implement our own rules since once in a while we identify specific attacks which are not yet present within the commercial pack. That way, we could enhance the protection of your Virtual private server right away instead of waiting for an official update.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers
which are integrated with our Hepsia CP and you'll not have to do anything specific on your end to employ it because it's activated by default every time you add a new domain or subdomain on your server. If it disrupts any of your applications, you will be able to stop it through the respective area of Hepsia, or you can leave it working in passive mode, so it'll recognize attacks and shall still keep a log for them, but will not stop them. You could examine the logs later to find out what you can do to boost the protection of your Internet sites as you will find info such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity reacted, and so on. The rules which we employ are commercial, thus they're frequently updated by a security company, but to be on the safe side, our staff also include custom rules every now and then in order to react to any new threats they have identified.