ModSecurity is an efficient firewall for Apache web servers that's used to stop attacks against web apps. It monitors the HTTP traffic to a particular site in real time and stops any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to do this - as an example, attempting to log in to a script admin area unsuccessfully many times activates one rule, sending a request to execute a particular file which may result in getting access to the website triggers another rule, and so on. ModSecurity is one of the best firewalls available on the market and it'll secure even scripts that aren't updated frequently since it can prevent attackers from employing known exploits and security holes. Very comprehensive info about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more detailed than the conventional logs generated by the Apache server, so you may later take a look at them and decide if you need to take more measures so as to improve the safety of your script-driven Internet sites.
ModSecurity in Website Hosting
ModSecurity can be found with every single website hosting solution which we provide and it's switched on by default for every domain or subdomain that you add via your Hepsia Control Panel. In case it interferes with any of your apps or you'd like to disable it for whatever reason, you'll be able to do this through the ModSecurity section of Hepsia with just a mouse click. You could also activate a passive mode, so the firewall will detect potential attacks and keep a log, but will not take any action. You could see comprehensive logs in the exact same section, including the IP where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so on. For optimum safety of our customers we use a collection of commercial firewall rules blended with custom ones which are added by our system admins.
ModSecurity in Semi-dedicated Hosting
We've integrated ModSecurity as a standard inside all semi-dedicated hosting products, so your web applications will be protected the instant you set them up under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will allow you to activate or turn off the firewall for any website with a mouse click. You will also be able to activate a passive detection mode through which ModSecurity shall keep a log of possible attacks without really stopping them. The comprehensive logs include the nature of the attack and what ModSecurity response that attack activated, where it came from, etcetera. The list of rules that we use is frequently updated in order to match any new risks that might appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones that our administrators add if they discover a threat which is not present inside the commercial list yet.
ModSecurity in VPS Web Hosting
Security is essential to us, so we set up ModSecurity on all virtual private servers that are set up with the Hepsia Control Panel by default. The firewall could be managed through a dedicated section in Hepsia and is activated automatically when you add a new domain or generate a subdomain, so you won't have to do anything by hand. You'll also be able to deactivate it or switch on the so-called detection mode, so it will keep a log of possible attacks that you can later study, but won't block them. The logs in both passive and active modes include details about the kind of the attack and how it was stopped, what IP it originated from and other valuable info which might help you to tighten the security of your sites by updating them or blocking IPs, for example. On top of the commercial rules that we get for ModSecurity from a third-party security firm, we also employ our own rules since once in a while we detect specific attacks that are not yet present within the commercial pack. This way, we could improve the security of your Virtual private server promptly as opposed to waiting for a certified update.
ModSecurity in Dedicated Servers Hosting
All of our dedicated servers which are installed with the Hepsia hosting Control Panel include ModSecurity, so any app which you upload or set up shall be protected from the very beginning and you'll not need to worry about common attacks or vulnerabilities. An independent section within Hepsia will permit you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you'll see in the logs can easily help you to secure your sites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, etcetera. With this info, you'll be able to see whether an Internet site needs an update, if you need to block IPs from accessing your hosting server, and so forth. Aside from the third-party commercial security rules for ModSecurity we use, our administrators include custom ones as well if they come across a new threat that is not yet included in the commercial bundle.