ModSecurity is an effective firewall for Apache web servers that's employed to prevent attacks against web applications. It monitors the HTTP traffic to a specific site in real time and prevents any intrusion attempts the instant it detects them. The firewall uses a set of rules to accomplish that - for instance, trying to log in to a script admin area unsuccessfully a few times activates one rule, sending a request to execute a particular file which may result in gaining access to the website triggers a different rule, etcetera. ModSecurity is amongst the best firewalls on the market and it will protect even scripts which are not updated on a regular basis since it can prevent attackers from using known exploits and security holes. Very comprehensive information about every single intrusion attempt is recorded and the logs the firewall keeps are much more specific than the regular logs generated by the Apache server, so you may later examine them and determine whether you need to take more measures so as to boost the safety of your script-driven sites.
ModSecurity in Shared Website Hosting
ModSecurity comes by default with all shared website hosting packages which we supply and it shall be activated automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has three different modes, so you could switch on and disable it with a click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your Internet sites shall include in-depth info including the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules we use are regularly updated and consist of both commercial ones we get from a third-party security firm and custom ones which our system administrators include in the event that they detect a new sort of attacks. This way, the Internet sites which you host here shall be way more protected with no action required on your end.
ModSecurity in Semi-dedicated Servers
We have included ModSecurity as a standard within all semi-dedicated server products, so your web applications shall be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts shall permit you to switch on or turn off the firewall for any Internet site with a mouse click. You will also be able to turn on a passive detection mode with which ModSecurity will maintain a log of potential attacks without really stopping them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack caused, where it originated from, and so forth. The list of rules which we use is regularly updated in order to match any new risks that might appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones that our administrators add in the event that they find a threat that is not present inside the commercial list yet.
ModSecurity in VPS Servers
Protection is of the utmost importance to us, so we set up ModSecurity on all VPS servers which are made available with the Hepsia CP by default. The firewall can be managed via a dedicated section within Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you will not have to do anything by hand. You will also be able to disable it or activate the so-called detection mode, so it'll maintain a log of possible attacks you can later examine, but won't block them. The logs in both passive and active modes contain information about the form of the attack and how it was stopped, what IP it came from and other important information which could help you to tighten the security of your sites by updating them or blocking IPs, for instance. Besides the commercial rules which we get for ModSecurity from a third-party security company, we also employ our own rules because every now and then we identify specific attacks that aren't yet present inside the commercial group. This way, we can easily boost the protection of your VPS in a timely manner rather than waiting for a certified update.
ModSecurity in Dedicated Servers
ModSecurity is included with all dedicated servers that are set up with our Hepsia Control Panel and you will not have to do anything specific on your end to employ it as it is activated by default every time you add a new domain or subdomain on your web server. In the event that it interferes with some of your programs, you will be able to stop it through the respective section of Hepsia, or you could leave it operating in passive mode, so it shall recognize attacks and shall still maintain a log for them, but won't prevent them. You could examine the logs later to find out what you can do to increase the safety of your Internet sites as you'll find information such as where an intrusion attempt originated from, what website was attacked and in accordance with what rule ModSecurity reacted, etc. The rules we use are commercial, hence they're regularly updated by a security firm, but to be on the safe side, our administrators also add custom rules once in a while in order to respond to any new threats they have discovered.