ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and in case it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the traffic than any web server does, so you will be able to keep track of what is happening with your websites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it recognizes whether someone is attempting to log in to the administration area of a particular script a number of times or if a request is sent to execute a file with a particular command. In these situations these attempts trigger the corresponding rules and the firewall program blocks the attempts immediately, after that records detailed details about them in its logs. ModSecurity is amongst the very best software firewalls on the market and it can protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Cloud Hosting
ModSecurity comes by default with all cloud hosting plans which we supply and it shall be switched on automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to activate and disable it with a click or set it to detection mode, so it'll maintain a log of all attacks, but it'll not do anything to prevent them. The log for any of your websites shall feature elaborate info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are frequently updated and comprise of both commercial ones we get from a third-party security company and custom ones our system administrators add in case that they detect a new sort of attacks. This way, the Internet sites which you host here will be far more protected without any action expected on your end.
ModSecurity in Semi-dedicated Servers
We've integrated ModSecurity as a standard within all semi-dedicated server products, so your web apps shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will allow you to activate or turn off the firewall for any Internet site with a mouse click. You shall also have the ability to activate a passive detection mode with which ModSecurity will maintain a log of potential attacks without actually stopping them. The thorough logs include the nature of the attack and what ModSecurity response that attack generated, where it came from, and so on. The list of rules we employ is constantly updated in order to match any new threats which may appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones that our administrators include if they discover a threat that is not present inside the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are provided with the Hepsia hosting CP, so your web programs will be protected from the second your server is ready. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you could deactivate it with a click from the corresponding section of Hepsia. You may also set it to work in detection mode, so it shall keep a detailed log of any possible attacks without taking any action to prevent them. The logs are available within the very same section and provide information regarding the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For maximum security, we employ not just commercial rules from a business working in the field of web security, but also custom ones our admins add manually so as to react to new risks which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
All of our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any program which you upload or set up will be properly secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you'll see in the logs can easily allow you to to secure your sites better - the IP address an attack came from, what website was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this information, you can see whether an Internet site needs an update, whether you need to block IPs from accessing your web server, etc. Aside from the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well when they discover a new threat that's not yet a part of the commercial bundle.