ModSecurity is a highly effective firewall for Apache web servers which is used to stop attacks towards web apps. It keeps track of the HTTP traffic to a given Internet site in real time and stops any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do this - as an illustration, trying to log in to a script admin area unsuccessfully many times triggers one rule, sending a request to execute a specific file that could result in gaining access to the Internet site triggers another rule, and so forth. ModSecurity is among the best firewalls on the market and it'll protect even scripts which aren't updated often as it can prevent attackers from using known exploits and security holes. Very comprehensive info about each and every intrusion attempt is recorded and the logs the firewall maintains are far more detailed than the conventional logs created by the Apache server, so you may later examine them and determine if you need to take more measures so as to increase the protection of your script-driven sites.
ModSecurity in Hosting
ModSecurity comes standard with all hosting plans that we offer and it shall be turned on automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with only a click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your sites shall feature comprehensive info including the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules which we use are regularly updated and consist of both commercial ones which we get from a third-party security business and custom ones which our system admins include in the event that they detect a new type of attacks. This way, the sites you host here will be much more secure without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting solutions and if you decide to host your sites with us, there won't be anything special you'll need to do as the firewall is activated by default for all domains and subdomains which you add via your hosting CP. If needed, you could disable ModSecurity for a certain website or activate the so-called detection mode in which case the firewall shall still operate and record data, but shall not do anything to stop possible attacks against your websites. Detailed logs shall be accessible in your CP and you'll be able to see what type of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so forth. We employ two types of rules on our servers - commercial ones from a company which operates in the field of web security, and customized ones which our administrators sometimes include to respond to newly identified threats in a timely manner.
ModSecurity in VPS Web Hosting
All virtual private servers which are offered with the Hepsia CP feature ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the web server, so there won't be anything special which you shall have to do to protect your websites. It will take you just a click to stop ModSecurity if required or to switch on its passive mode so that it records what goes on without taking any steps to prevent intrusions. You shall be able to see the logs created in active or passive mode through the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall employed to deal with it, etc. We use a mix of commercial and custom rules in order to make sure that ModSecurity shall block out as many threats as possible, thus boosting the protection of your web apps as much as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity comes with all dedicated servers that are set up with our Hepsia CP and you won't need to do anything specific on your end to employ it because it's switched on by default every time you include a new domain or subdomain on your server. If it interferes with some of your applications, you shall be able to stop it via the respective area of Hepsia, or you could leave it in passive mode, so it shall identify attacks and shall still maintain a log for them, but shall not prevent them. You'll be able to analyze the logs later to find out what you can do to increase the security of your sites as you shall find info such as where an intrusion attempt came from, what Internet site was attacked and in accordance with what rule ModSecurity responded, and so on. The rules that we employ are commercial, hence they are frequently updated by a security firm, but to be on the safe side, our staff also add custom rules occasionally as to deal with any new threats they have found.