ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and if it detects an intrusion attempt, it blocks it. The firewall also keeps a more comprehensive log for the website visitors than any server does, so you shall manage to keep track of what is going on with your Internet sites much better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it stops attacks. For example, it recognizes if somebody is attempting to log in to the administration area of a particular script a number of times or if a request is sent to execute a file with a particular command. In these instances these attempts set off the corresponding rules and the firewall blocks the attempts instantly, after that records in-depth information about them inside its logs. ModSecurity is one of the most effective software firewalls available and it could easily protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Web Hosting
ModSecurity is offered with each and every web hosting solution that we offer and it's turned on by default for any domain or subdomain that you include via your Hepsia Control Panel. In the event that it disrupts any of your applications or you'd like to disable it for whatever reason, you will be able to accomplish that through the ModSecurity area of Hepsia with simply a mouse click. You can also enable a passive mode, so the firewall will identify possible attacks and keep a log, but will not take any action. You'll be able to view extensive logs in the same section, including the IP where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so on. For max safety of our customers we use a collection of commercial firewall rules combined with custom ones that are included by our system admins.
ModSecurity in Semi-dedicated Hosting
Any web program you install inside your new semi-dedicated hosting account will be protected by ModSecurity as the firewall is included with all our hosting solutions and is turned on by default for any domain and subdomain that you include or create via your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not only could you activate or deactivate it fully, but you could also enable a passive mode, so the firewall shall not block anything, but it'll still maintain a record of potential attacks. This requires just a mouse click and you'll be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, etc. The firewall uses 2 groups of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one that our administrators update manually as to respond to newly discovered risks immediately.
ModSecurity in VPS
Security is very important to us, so we set up ModSecurity on all virtual private servers that are provided with the Hepsia CP by default. The firewall could be managed through a dedicated section in Hepsia and is turned on automatically when you include a new domain or generate a subdomain, so you won't need to do anything by hand. You will also be able to disable it or switch on the so-called detection mode, so it'll maintain a log of possible attacks which you can later examine, but won't block them. The logs in both passive and active modes include info regarding the kind of the attack and how it was eliminated, what IP it originated from and other useful info which may help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. In addition to the commercial rules we get for ModSecurity from a third-party security enterprise, we also employ our own rules as once in a while we identify specific attacks which are not yet present inside the commercial pack. That way, we can enhance the security of your Virtual private server immediately instead of waiting for an official update.
ModSecurity in Dedicated Hosting
ModSecurity is provided with all dedicated servers that are integrated with our Hepsia CP and you will not have to do anything specific on your end to use it as it is switched on by default whenever you include a new domain or subdomain on your web server. In the event that it interferes with any of your programs, you'll be able to stop it through the respective area of Hepsia, or you can leave it operating in passive mode, so it'll recognize attacks and will still maintain a log for them, but shall not block them. You'll be able to look at the logs later to find out what you can do to increase the protection of your sites as you will find details such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity responded, etc. The rules which we employ are commercial, thus they are constantly updated by a security provider, but to be on the safe side, our staff also include custom rules every now and then as to deal with any new threats they have found.