ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and when it detects an intrusion attempt, it prevents it. The firewall furthermore maintains a more comprehensive log for the website visitors than any web server does, so you will manage to keep track of what is happening with your Internet sites much better than if you rely only on standard logs. ModSecurity uses security rules based on which it stops attacks. For instance, it recognizes whether someone is trying to log in to the admin area of a certain script multiple times or if a request is sent to execute a file with a specific command. In these cases these attempts set off the corresponding rules and the firewall blocks the attempts immediately, and then records in-depth info about them within its logs. ModSecurity is amongst the most effective software firewalls out there and it could easily protect your web apps against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.
ModSecurity in Cloud Website Hosting
ModSecurity comes by default with all cloud website hosting plans that we offer and it will be turned on automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and deactivate it with simply a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it will not do anything to stop them. The log for each of your Internet sites shall feature elaborate info such as the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are frequently updated and incorporate both commercial ones that we get from a third-party security company and custom ones our system admins include in case that they detect a new kind of attacks. That way, the websites which you host here will be far more protected with no action required on your end.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting packages and if you decide to host your sites with our company, there shall not be anything special you will have to do since the firewall is turned on by default for all domains and subdomains you include via your hosting CP. If required, you'll be able to disable ModSecurity for a particular Internet site or activate the so-called detection mode in which case the firewall will still function and record data, but shall not do anything to prevent possible attacks on your websites. Comprehensive logs will be readily available in your CP and you'll be able to see which kind of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so on. We use 2 types of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones which our admins sometimes include to respond to newly found risks in a timely manner.
ModSecurity in VPS Hosting
All virtual private servers that are provided with the Hepsia CP include ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the server, so there shall not be anything special which you will have to do to protect your websites. It shall take you only a mouse click to stop ModSecurity if required or to activate its passive mode so that it records what goes on without taking any measures to prevent intrusions. You'll be able to see the logs created in passive or active mode via the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall used to handle it, etcetera. We use a mix of commercial and custom rules so as to ensure that ModSecurity shall block out as many risks as possible, consequently boosting the security of your web apps as much as possible.
ModSecurity in Dedicated Web Hosting
ModSecurity is provided with all dedicated servers which are set up with our Hepsia CP and you won't have to do anything specific on your end to use it because it is turned on by default whenever you include a new domain or subdomain on your web server. In case it disrupts some of your apps, you will be able to stop it via the respective section of Hepsia, or you may leave it working in passive mode, so it will recognize attacks and shall still maintain a log for them, but won't block them. You'll be able to look at the logs later to learn what you can do to increase the safety of your Internet sites since you shall find information such as where an intrusion attempt originated from, what Internet site was attacked and in accordance with what rule ModSecurity responded, and so on. The rules which we use are commercial, thus they are constantly updated by a security company, but to be on the safe side, our staff also add custom rules from time to time as to deal with any new threats they have identified.