ModSecurity is a powerful firewall for Apache web servers which is used to prevent attacks against web applications. It keeps track of the HTTP traffic to a particular website in real time and blocks any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to do this - for instance, attempting to log in to a script administration area unsuccessfully several times activates one rule, sending a request to execute a certain file that may result in gaining access to the website triggers a different rule, etcetera. ModSecurity is amongst the best firewalls on the market and it will secure even scripts that aren't updated frequently since it can prevent attackers from employing known exploits and security holes. Quite detailed information about each and every intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the standard logs created by the Apache server, so you may later examine them and decide whether you need to take extra measures so as to increase the security of your script-driven sites.
ModSecurity in Shared Web Hosting
We provide ModSecurity with all shared web hosting
solutions, so your web applications shall be shielded from malicious attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you'll be able to stop it through the respective part of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you will discover in Hepsia are very detailed and offer data about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, and so on. We use a set of commercial rules that are frequently updated, but sometimes our administrators add custom rules as well in order to better protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting
plans and if you decide to host your sites with us, there shall not be anything special you will have to do since the firewall is activated by default for all domains and subdomains which you add using your hosting CP. If required, you could disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall shall still function and record data, but shall not do anything to stop possible attacks against your Internet sites. Detailed logs will be readily available inside your Control Panel and you'll be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, and so forth. We use 2 kinds of rules on our servers - commercial ones from a company that operates in the field of web security, and customized ones that our admins sometimes include to respond to newly identified threats promptly.
ModSecurity in VPS Hosting
Security is extremely important to us, so we set up ModSecurity on all virtual private servers
which are made available with the Hepsia Control Panel by default. The firewall can be managed via a dedicated section within Hepsia and is switched on automatically when you add a new domain or create a subdomain, so you won't have to do anything manually. You'll also be able to deactivate it or activate the so-called detection mode, so it'll keep a log of potential attacks you can later study, but will not prevent them. The logs in both passive and active modes offer details regarding the kind of the attack and how it was stopped, what IP address it came from and other useful info that might help you to tighten the security of your websites by updating them or blocking IPs, as an example. Beyond the commercial rules we get for ModSecurity from a third-party security company, we also implement our own rules because from time to time we discover specific attacks that aren't yet present inside the commercial pack. That way, we can improve the protection of your Virtual private server in a timely manner as opposed to awaiting a certified update.
ModSecurity in Dedicated Web Hosting
All of our dedicated servers
which are installed with the Hepsia hosting Control Panel include ModSecurity, so any app which you upload or install will be secured from the very beginning and you won't have to worry about common attacks or vulnerabilities. An individual section within Hepsia will enable you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you'll find in the logs can easily allow you to to secure your websites better - the IP address an attack came from, what site was attacked and how, what ModSecurity rule was triggered, etcetera. With this information, you could see whether a website needs an update, if you should block IPs from accessing your hosting server, and so forth. On top of the third-party commercial security rules for ModSecurity we use, our administrators include custom ones too every time they come across a new threat that's not yet a part of the commercial bundle.