ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and if it detects an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the site visitors than any server does, so you shall manage to monitor what's happening with your sites better than if you rely only on standard logs. ModSecurity employs security rules based on which it prevents attacks. For example, it identifies if someone is trying to log in to the admin area of a given script multiple times or if a request is sent to execute a file with a particular command. In these situations these attempts set off the corresponding rules and the firewall blocks the attempts instantly, after that records detailed details about them inside its logs. ModSecurity is one of the very best software firewalls available and it could easily protect your web apps against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.
ModSecurity in Website Hosting
We provide ModSecurity with all website hosting
solutions, so your web apps shall be shielded from destructive attacks. The firewall is switched on as standard for all domains and subdomains, but if you would like, you shall be able to stop it using the respective part of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you'll discover within Hepsia are incredibly detailed and include info about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, etc. We use a group of commercial rules that are often updated, but sometimes our administrators include custom rules as well so as to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
We have included ModSecurity as a standard within all semi-dedicated hosting
plans, so your web applications shall be protected the instant you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts will allow you to enable or turn off the firewall for any website with a click. You will also be able to switch on a passive detection mode through which ModSecurity shall keep a log of possible attacks without actually stopping them. The comprehensive logs include the nature of the attack and what ModSecurity response that attack activated, where it originated from, and so forth. The list of rules we use is frequently updated as to match any new risks that could appear on the Internet and it comes with both commercial rules that we get from a security company and custom-written ones that our admins add in case they discover a threat which is not present inside the commercial list yet.
ModSecurity in VPS Hosting
ModSecurity is included with all Hepsia-based virtual private servers
that we offer and it shall be switched on automatically for any new domain or subdomain which you add on the web server. In this way, any web app which you install will be protected immediately without doing anything manually on your end. The firewall could be handled via the section of the CP which has the same name. This is the location in whichyou can switch off ModSecurity or let its passive mode, so it won't take any action towards threats, but will still keep a thorough log. The recorded info is available inside the same section as well and you'll be able to see what IPs any attacks originated from so that you block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we employ on our servers are a blend between commercial ones that we get from a security organization and custom ones which are included by our admins to optimize the protection of any web applications hosted on our end.
ModSecurity in Dedicated Web Hosting
ModSecurity is included with all dedicated servers
which are set up with our Hepsia CP and you won't have to do anything specific on your end to employ it since it's activated by default every time you include a new domain or subdomain on your web server. If it disrupts any of your apps, you will be able to stop it through the respective area of Hepsia, or you could leave it in passive mode, so it shall identify attacks and will still maintain a log for them, but will not prevent them. You could analyze the logs later to determine what you can do to enhance the security of your sites as you will find info such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, and so on. The rules that we use are commercial, thus they are frequently updated by a security firm, but to be on the safe side, our administrators also include custom rules once in a while in order to respond to any new threats they have identified.