ModSecurity is an effective firewall for Apache web servers that's employed to stop attacks towards web applications. It keeps track of the HTTP traffic to a given site in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to accomplish that - as an illustration, trying to log in to a script admin area without success a few times triggers one rule, sending a request to execute a certain file that could result in accessing the Internet site triggers another rule, etcetera. ModSecurity is one of the best firewalls available and it will preserve even scripts that are not updated regularly because it can prevent attackers from using known exploits and security holes. Incredibly thorough data about each and every intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the conventional logs generated by the Apache server, so you may later analyze them and determine whether you need to take extra measures in order to increase the protection of your script-driven sites.
ModSecurity in Shared Hosting
ModSecurity can be found with each shared hosting
package which we offer and it is turned on by default for every domain or subdomain that you add through your Hepsia CP. In the event that it disrupts any of your apps or you'd like to disable it for some reason, you will be able to accomplish that through the ModSecurity section of Hepsia with just a click. You may also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but won't take any action. You could view comprehensive logs in the exact same section, including the IP address where the attack originated from, what precisely the attacker aimed to do and at what time, what ModSecurity did, and so on. For maximum safety of our customers we use a collection of commercial firewall rules combined with custom ones which are provided by our system administrators.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server
plans that we offer feature ModSecurity and because the firewall is switched on by default, any site that you build under a domain or a subdomain will be protected straight away. A separate section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll allow you to start and stop the firewall for any site or activate a detection mode. With the last option, ModSecurity will not take any action, but it'll still identify possible attacks and will keep all info in a log as if it were fully active. The logs can be found within the exact same section of the CP and they feature info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we employ on our machines are a mix of commercial ones from a security firm and custom ones made by our system admins. Therefore, we provide greater security for your web programs as we can shield them from attacks even before security businesses release updates for completely new threats.
ModSecurity in VPS Servers
Protection is extremely important to us, so we install ModSecurity on all VPS servers
that are set up with the Hepsia Control Panel by default. The firewall could be managed via a dedicated section within Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you will not need to do anything personally. You shall also be able to disable it or activate the so-called detection mode, so it shall maintain a log of possible attacks which you can later study, but shall not prevent them. The logs in both passive and active modes offer info about the kind of the attack and how it was eliminated, what IP it came from and other important data that could help you to tighten the security of your websites by updating them or blocking IPs, for example. On top of the commercial rules we get for ModSecurity from a third-party security enterprise, we also employ our own rules as occasionally we identify specific attacks which are not yet present within the commercial package. This way, we can easily increase the protection of your Virtual private server promptly instead of waiting for a certified update.
ModSecurity in Dedicated Servers
If you decide to host your sites on a dedicated server
with the Hepsia CP, your web applications shall be secured straight away as ModSecurity is supplied with all Hepsia-based solutions. You will be able to regulate the firewall effortlessly and if needed, you will be able to turn it off or switch on its passive mode when it will only keep a log of what's taking place without taking any action to stop possible attacks. The logs that you can find in the exact same section of the Control Panel are really detailed and contain info about the attacker IP, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etc. This information will allow you to take measures and enhance the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our admins include every time they identify attacks that haven't yet been included in the commercial pack.