ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and when it discovers an intrusion attempt, it blocks it. The firewall also keeps a more thorough log for the website visitors than any web server does, so you shall be able to keep track of what is happening with your websites a lot better than if you rely merely on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it identifies if somebody is attempting to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a certain command. In such situations these attempts set off the corresponding rules and the firewall program hinders the attempts in real time, and then records detailed details about them in its logs. ModSecurity is among the most effective software firewalls available and it could easily protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.
ModSecurity in Web Hosting
We provide ModSecurity with all web hosting solutions, so your web apps will be shielded from harmful attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you shall be able to stop it through the respective part of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will find inside Hepsia are extremely detailed and feature info about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, etc. We use a set of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to better protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
Any web program which you install in your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting packages and is turned on by default for any domain and subdomain which you add or create using your Hepsia hosting Control Panel. You'll be able to manage ModSecurity through a dedicated area inside Hepsia where not only could you activate or deactivate it entirely, but you may also activate a passive mode, so the firewall shall not block anything, but it shall still keep a record of potential attacks. This requires just a click and you will be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall uses two groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one which our administrators update personally as to respond to newly discovered risks immediately.
ModSecurity in VPS Hosting
Safety is essential to us, so we install ModSecurity on all virtual private servers which are made available with the Hepsia CP as a standard. The firewall could be managed through a dedicated section within Hepsia and is turned on automatically when you include a new domain or generate a subdomain, so you'll not have to do anything manually. You'll also be able to deactivate it or switch on the so-called detection mode, so it'll maintain a log of possible attacks you can later examine, but shall not prevent them. The logs in both passive and active modes offer details regarding the kind of the attack and how it was prevented, what IP it came from and other important information which might help you to tighten the security of your websites by updating them or blocking IPs, for instance. On top of the commercial rules we get for ModSecurity from a third-party security enterprise, we also implement our own rules since once in a while we identify specific attacks that aren't yet present in the commercial group. This way, we can easily boost the security of your Virtual private server instantly rather than awaiting an official update.
ModSecurity in Dedicated Web Hosting
ModSecurity is available as standard with all dedicated servers which are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain you create on the web server. In the event that a web app does not work correctly, you can either switch off the firewall or set it to operate in passive mode. The latter means that ModSecurity shall keep a log of any potential attack that might take place, but will not take any action to prevent it. The logs produced in active or passive mode shall present you with more details about the exact file that was attacked, the form of the attack and the IP it originated from, and so on. This data will enable you to decide what actions you can take to boost the protection of your Internet sites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules that we use are updated frequently with a commercial package from a third-party security provider we work with, but oftentimes our admins include their own rules as well when they discover a new potential threat.