ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and when it detects an intrusion attempt, it prevents it. The firewall furthermore keeps a more thorough log for the site visitors than any web server does, so you shall be able to keep an eye on what's going on with your Internet sites a lot better than if you rely merely on standard logs. ModSecurity employs security rules based on which it stops attacks. For instance, it recognizes whether someone is attempting to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a certain command. In these situations these attempts set off the corresponding rules and the firewall software hinders the attempts immediately, then records comprehensive details about them in its logs. ModSecurity is one of the very best software firewalls on the market and it could easily protect your web applications against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity comes by default with all shared hosting packages which we provide and it will be activated automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and disable it with only a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it will not do anything to stop them. The log for any of your websites shall feature elaborate info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are constantly updated and incorporate both commercial ones which we get from a third-party security firm and custom ones our system administrators include in case that they detect a new kind of attacks. In this way, the websites which you host here will be way more protected without any action required on your end.
ModSecurity in Semi-dedicated Servers
We've included ModSecurity as a standard within all semi-dedicated server packages, so your web applications will be protected as soon as you set them up under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will allow you to switch on or turn off the firewall for any Internet site with a mouse click. You'll also have the ability to activate a passive detection mode with which ModSecurity will keep a log of potential attacks without really preventing them. The thorough logs include the nature of the attack and what ModSecurity response that attack initiated, where it originated from, and so forth. The list of rules we use is frequently updated as to match any new risks which could appear on the Internet and it comes with both commercial rules that we get from a security company and custom-written ones that our admins add in case they discover a threat which is not present inside the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are set up with the Hepsia hosting Control Panel, so your web apps shall be secured from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you could deactivate it with a click of your mouse through the corresponding section of Hepsia. You could also set it to work in detection mode, so it will keep a comprehensive log of any possible attacks without taking any action to stop them. The logs can be found within the same section and include information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For maximum security, we employ not simply commercial rules from a firm working in the field of web security, but also custom ones our administrators include personally so as to react to new threats that are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
All of our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any application that you upload or set up shall be protected from the very beginning and you'll not need to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you'll discover in the logs can easily allow you to to secure your websites better - the IP an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, etc. With this info, you can see whether a website needs an update, if you should block IPs from accessing your server, etcetera. Besides the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well whenever they come across a new threat which is not yet included in the commercial bundle.