ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its overall performance and when it identifies an intrusion attempt, it blocks it. The firewall additionally maintains a more detailed log for the site visitors than any server does, so you will be able to monitor what is happening with your websites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it prevents attacks. For example, it detects if someone is trying to log in to the administration area of a specific script a number of times or if a request is sent to execute a file with a particular command. In these cases these attempts trigger the corresponding rules and the firewall software hinders the attempts right away, and then records in-depth details about them inside its logs. ModSecurity is one of the most effective software firewalls on the market and it can protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.
ModSecurity in Hosting
ModSecurity is available on all hosting servers, so if you choose to host your sites with our business, they will be shielded from a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you'll need to do on your end. You'll be able to stop ModSecurity for any website if required, or to activate a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You'll be able to view specific logs via your Hepsia Control Panel including the IP where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the security of our clients' Internet sites seriously, we employ a set of commercial rules which we get from one of the leading companies that maintain this kind of rules. Our administrators also add custom rules to make sure that your sites will be shielded from as many threats as possible.
ModSecurity in Semi-dedicated Servers
Any web program you set up within your new semi-dedicated server account will be protected by ModSecurity as the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain that you include or create through your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated area within Hepsia where not only can you activate or deactivate it fully, but you could also enable a passive mode, so the firewall won't stop anything, but it will still maintain a record of potential attacks. This takes only a mouse click and you shall be able to see the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, and so forth. The firewall uses two sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our admins update manually in order to respond to newly discovered threats as quickly as possible.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting CP, so your web programs will be protected from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you can deactivate it with a mouse click via the corresponding section of Hepsia. You can also set it to operate in detection mode, so it'll keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found within the exact same section and include details about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For optimum security, we employ not simply commercial rules from a firm working in the field of web security, but also custom ones our admins add manually in order to respond to new risks which are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers
ModSecurity is included with all dedicated servers that are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to use it as it's enabled by default whenever you add a new domain or subdomain on your web server. In case it disrupts some of your apps, you will be able to stop it through the respective part of Hepsia, or you could leave it in passive mode, so it'll identify attacks and shall still maintain a log for them, but shall not stop them. You could look at the logs later to find out what you can do to boost the safety of your Internet sites as you will find information such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity reacted, etc. The rules we use are commercial, therefore they're frequently updated by a security company, but to be on the safe side, our administrators also add custom rules every now and then as to react to any new threats they have discovered.