ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and if it discovers an intrusion attempt, it prevents it. The firewall additionally maintains a more comprehensive log for the site visitors than any server does, so you shall manage to monitor what is happening with your Internet sites a lot better than if you rely only on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it recognizes if anyone is attempting to log in to the administration area of a specific script several times or if a request is sent to execute a file with a specific command. In these situations these attempts trigger the corresponding rules and the software hinders the attempts right away, and then records in-depth information about them within its logs. ModSecurity is among the very best software firewalls on the market and it could easily protect your web applications against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Shared Website Hosting
ModSecurity comes standard with all shared website hosting
solutions that we supply and it shall be turned on automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and disable it with only a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to stop them. The log for any of your websites shall feature comprehensive info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules that we use are frequently updated and incorporate both commercial ones that we get from a third-party security business and custom ones our system admins include in case that they detect a new kind of attacks. This way, the websites you host here shall be way more protected without any action needed on your end.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting solutions and if you choose to host your websites with our company, there will not be anything special you'll have to do since the firewall is activated by default for all domains and subdomains that you add through your hosting Control Panel. If required, you can disable ModSecurity for a particular Internet site or turn on the so-called detection mode in which case the firewall will still function and record data, but will not do anything to prevent potential attacks on your Internet sites. In depth logs shall be accessible in your Control Panel and you'll be able to see what sort of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, and so on. We employ two sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom ones which our administrators sometimes include to respond to newly identified risks on time.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers
that are provided with the Hepsia hosting Control Panel, so your web applications will be secured from the moment your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you can deactivate it with a click of your mouse via the corresponding section of Hepsia. You could also set it to operate in detection mode, so it will keep a comprehensive log of any possible attacks without taking any action to stop them. The logs are available within the same section and provide info about the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones that our admins include personally in order to respond to new threats that are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers Hosting
When you opt to host your websites on a dedicated server
with the Hepsia Control Panel, your web applications shall be secured right from the start since ModSecurity is supplied with all Hepsia-based solutions. You will be able to control the firewall without difficulty and if necessary, you shall be able to turn it off or enable its passive mode when it'll only maintain a log of what is going on without taking any action to prevent potential attacks. The logs which you can find in the very same section of the Control Panel are very detailed and include details about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so on. This data will allow you to take measures and improve the security of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our staff include every time they recognize attacks which haven't yet been included in the commercial pack.