ModSecurity is a powerful firewall for Apache web servers that's used to stop attacks toward web applications. It monitors the HTTP traffic to a particular site in real time and prevents any intrusion attempts the instant it discovers them. The firewall uses a set of rules to do this - as an example, trying to log in to a script admin area without success several times activates one rule, sending a request to execute a specific file that may result in accessing the site triggers another rule, and so on. ModSecurity is one of the best firewalls on the market and it will protect even scripts that are not updated regularly because it can prevent attackers from using known exploits and security holes. Quite thorough data about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the conventional logs created by the Apache server, so you could later examine them and determine if you need to take more measures so as to boost the security of your script-driven websites.
ModSecurity in Cloud Website Hosting
ModSecurity comes by default with all cloud website hosting solutions that we offer and it will be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you can activate and deactivate it with a click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for each of your websites shall feature detailed info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are constantly updated and include both commercial ones we get from a third-party security business and custom ones that our system admins include in the event that they detect a new kind of attacks. That way, the sites which you host here shall be far more secure without any action required on your end.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting packages that we offer come with ModSecurity and since the firewall is turned on by default, any Internet site you create under a domain or a subdomain will be secured straight away. An independent section inside the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall enable you to stop and start the firewall for any Internet site or activate a detection mode. With the latter, ModSecurity will not take any action, but it'll still detect possible attacks and will keep all data within a log as if it were fully active. The logs can be found inside the very same section of the CP and they offer info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules that we employ on our machines are a mix between commercial ones from a security firm and custom ones created by our system admins. Consequently, we offer increased security for your web programs as we can shield them from attacks before security firms release updates for new threats.
ModSecurity in VPS
All virtual private servers which are provided with the Hepsia Control Panel come with ModSecurity. The firewall is installed and switched on by default for all domains that are hosted on the machine, so there shall not be anything special which you'll have to do to protect your Internet sites. It'll take you only a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any steps to stop intrusions. You will be able to view the logs generated in active or passive mode via the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall employed to handle it, etcetera. We use a mixture of commercial and custom rules so as to ensure that ModSecurity shall prevent as many threats as possible, therefore improving the protection of your web apps as much as possible.
ModSecurity in Dedicated Hosting
All of our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any application which you upload or set up shall be protected from the very beginning and you won't need to worry about common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to stop them. What you will find in the logs can easily help you to secure your sites better - the IP an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this information, you'll be able to see if a site needs an update, if you should block IPs from accessing your web server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our admins include custom ones too every time they discover a new threat that is not yet a part of the commercial bundle.