ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it discovers an intrusion attempt, it blocks it. The firewall furthermore maintains a more thorough log for the traffic than any web server does, so you'll manage to keep track of what's going on with your Internet sites a lot better than if you rely merely on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it detects if someone is attempting to log in to the admin area of a particular script a number of times or if a request is sent to execute a file with a certain command. In such circumstances these attempts trigger the corresponding rules and the firewall program hinders the attempts immediately, and then records in-depth information about them within its logs. ModSecurity is amongst the best software firewalls available and it can protect your web applications against many threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting solutions that we offer and it shall be activated automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and deactivate it with simply a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it will not do anything to stop them. The log for any of your Internet sites shall contain comprehensive information including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and include both commercial ones which we get from a third-party security business and custom ones which our system administrators include in case that they detect a new sort of attacks. In this way, the sites that you host here shall be much more secure without any action expected on your end.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server solutions that we offer come with ModSecurity and given that the firewall is turned on by default, any website you set up under a domain or a subdomain shall be secured right away. A separate section within the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to stop and start the firewall for any site or enable a detection mode. With the last mentioned, ModSecurity won't take any action, but it will still detect possible attacks and will keep all info within a log as if it were completely active. The logs can be found within the same section of the CP and they offer information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, etcetera. The security rules we use on our web servers are a mix of commercial ones from a security business and custom ones created by our system admins. For that reason, we provide greater security for your web apps as we can shield them from attacks even before security companies release updates for brand new threats.
ModSecurity in VPS Servers
Safety is of the utmost importance to us, so we set up ModSecurity on all VPS servers that are set up with the Hepsia CP by default. The firewall can be managed through a dedicated section within Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you will not need to do anything by hand. You'll also be able to deactivate it or switch on the so-called detection mode, so it will keep a log of possible attacks you can later analyze, but won't block them. The logs in both passive and active modes contain info about the kind of the attack and how it was prevented, what IP it originated from and other useful data that might help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. Besides the commercial rules we get for ModSecurity from a third-party security firm, we also use our own rules since every now and then we detect specific attacks that are not yet present inside the commercial pack. This way, we can boost the security of your VPS in a timely manner as opposed to awaiting a certified update.
ModSecurity in Dedicated Servers
If you decide to host your websites on a dedicated server with the Hepsia CP, your web programs shall be protected straight away as ModSecurity is supplied with all Hepsia-based plans. You will be able to control the firewall effortlessly and if needed, you shall be able to turn it off or switch on its passive mode when it'll only keep a log of what is happening without taking any action to prevent possible attacks. The logs that you'll find within the same section of the Control Panel are really detailed and feature information about the attacker IP, what website and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etc. This information will allow you to take measures and boost the security of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our staff include whenever they recognize attacks that haven't yet been included in the commercial pack.