ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and if it identifies an intrusion attempt, it blocks it. The firewall furthermore keeps a more comprehensive log for the traffic than any server does, so you shall be able to keep an eye on what is happening with your websites a lot better than if you rely only on conventional logs. ModSecurity works with security rules based on which it prevents attacks. For instance, it identifies if someone is attempting to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a specific command. In these situations these attempts trigger the corresponding rules and the firewall software hinders the attempts instantly, and then records in-depth information about them inside its logs. ModSecurity is among the very best software firewalls available and it could easily protect your web applications against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins often.
ModSecurity in Web Hosting
ModSecurity comes by default with all web hosting solutions that we offer and it will be turned on automatically for any domain or subdomain which you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you can activate and disable it with simply a click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to prevent them. The log for any of your websites will feature in-depth information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are frequently updated and comprise of both commercial ones we get from a third-party security business and custom ones our system administrators add in case that they detect a new kind of attacks. That way, the sites which you host here shall be far more secure with no action expected on your end.
ModSecurity in Semi-dedicated Servers
Any web program that you install inside your new semi-dedicated server account will be protected by ModSecurity as the firewall comes with all our hosting packages and is turned on by default for any domain and subdomain you include or create through your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated section inside Hepsia where not only can you activate or deactivate it entirely, but you may also enable a passive mode, so the firewall shall not stop anything, but it shall still maintain a record of potential attacks. This requires only a mouse click and you will be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, etcetera. The firewall uses 2 sets of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one which our administrators update manually in order to respond to newly discovered threats as soon as possible.
ModSecurity in VPS Servers
ModSecurity is provided with all Hepsia-based VPS servers that we offer and it'll be switched on automatically for every new domain or subdomain that you include on the web server. This way, any web app which you install will be protected right away without doing anything personally on your end. The firewall may be handled from the section of the Control Panel which bears the same name. This is the location whereyou'll be able to turn off ModSecurity or let its passive mode, so it shall not take any action towards threats, but shall still maintain a comprehensive log. The recorded information is available inside the same section as well and you will be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we employ on our servers are a combination between commercial ones that we get from a security firm and custom ones which are included by our staff to maximize the protection of any web applications hosted on our end.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you won't have to do anything specific on your end to employ it as it's switched on by default whenever you add a new domain or subdomain on your hosting server. If it disrupts any of your programs, you will be able to stop it via the respective section of Hepsia, or you may leave it working in passive mode, so it shall recognize attacks and will still keep a log for them, but will not prevent them. You may analyze the logs later to learn what you can do to increase the safety of your Internet sites since you shall find information such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity reacted, and so forth. The rules that we use are commercial, thus they are frequently updated by a security firm, but to be on the safe side, our staff also add custom rules occasionally in order to respond to any new threats they have found.