ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and in case it detects an intrusion attempt, it blocks it. The firewall furthermore keeps a more detailed log for the traffic than any web server does, so you shall be able to monitor what is happening with your Internet sites a lot better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it detects if someone is attempting to log in to the administration area of a particular script several times or if a request is sent to execute a file with a certain command. In such situations these attempts set off the corresponding rules and the firewall blocks the attempts instantly, and then records detailed details about them within its logs. ModSecurity is among the very best software firewalls available and it can protect your web applications against many threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting plans that we provide and it'll be switched on automatically for any domain or subdomain that you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and deactivate it with simply a click or set it to detection mode, so it shall maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your sites shall include comprehensive info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules which we use are constantly updated and comprise of both commercial ones that we get from a third-party security business and custom ones our system admins add in case that they detect a new type of attacks. That way, the Internet sites you host here shall be far more secure with no action expected on your end.
ModSecurity in Semi-dedicated Servers
We have incorporated ModSecurity by default inside all semi-dedicated server plans, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will allow you to activate or turn off the firewall for any website with a mouse click. You shall also have the ability to turn on a passive detection mode through which ModSecurity shall maintain a log of possible attacks without actually stopping them. The thorough logs include the nature of the attack and what ModSecurity response this attack triggered, where it originated from, and so on. The list of rules that we use is frequently updated as to match any new risks which may appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our administrators include if they find a threat that's not present in the commercial list yet.
ModSecurity in VPS Servers
ModSecurity comes with all Hepsia-based VPS servers we offer and it will be switched on automatically for any new domain or subdomain you add on the machine. This way, any web application that you install will be protected immediately without doing anything personally on your end. The firewall could be handled from the section of the CP that bears the same name. This is the area in whichyou can disable ModSecurity or let its passive mode, so it shall not take any action toward threats, but shall still maintain a thorough log. The recorded info is available in the same section as well and you shall be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules we employ on our servers are a blend between commercial ones which we get from a security company and custom ones that are included by our staff to improve the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to employ it since it's enabled by default whenever you include a new domain or subdomain on your hosting server. In the event that it interferes with some of your applications, you will be able to stop it through the respective part of Hepsia, or you can leave it operating in passive mode, so it'll detect attacks and shall still maintain a log for them, but shall not block them. You could look at the logs later to determine what you can do to enhance the security of your sites as you will find info such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity reacted, etcetera. The rules we use are commercial, therefore they are regularly updated by a security company, but to be on the safe side, our staff also include custom rules occasionally as to deal with any new threats they have discovered.