ModSecurity is a highly effective firewall for Apache web servers which is used to stop attacks toward web apps. It monitors the HTTP traffic to a certain site in real time and blocks any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to do that - as an illustration, attempting to log in to a script administration area unsuccessfully a few times activates one rule, sending a request to execute a certain file that may result in gaining access to the Internet site triggers another rule, etc. ModSecurity is among the best firewalls on the market and it will protect even scripts that are not updated regularly as it can prevent attackers from using known exploits and security holes. Quite comprehensive information about every intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the regular logs created by the Apache server, so you could later analyze them and decide whether you need to take additional measures in order to boost the security of your script-driven Internet sites.
ModSecurity in Shared Hosting
We provide ModSecurity with all shared hosting plans, so your web apps will be resistant to harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you shall be able to stop it via the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you shall find within Hepsia are quite detailed and offer info about the nature of any attack, when it took place and from what IP address, the firewall rule which was triggered, and so on. We employ a group of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well in order to efficiently protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting packages which we offer include ModSecurity and since the firewall is enabled by default, any website that you set up under a domain or a subdomain shall be protected straight away. An individual section within the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it will allow you to stop and start the firewall for any site or enable a detection mode. With the latter, ModSecurity will not take any action, but it will still detect possible attacks and will keep all information inside a log as if it were completely active. The logs could be found inside the very same section of the CP and they offer specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so forth. The security rules that we use on our machines are a mix between commercial ones from a security business and custom ones made by our system admins. Consequently, we offer greater security for your web programs as we can protect them from attacks before security businesses release updates for completely new threats.
ModSecurity in VPS Hosting
All virtual private servers that are offered with the Hepsia Control Panel include ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the machine, so there will not be anything special which you'll need to do to protect your websites. It'll take you a mouse click to stop ModSecurity if necessary or to activate its passive mode so that it records what goes on without taking any measures to stop intrusions. You will be able to see the logs produced in passive or active mode via the corresponding section of Hepsia and learn more about the form of the attack, where it originated from, what rule the firewall used to take care of it, etcetera. We employ a mixture of commercial and custom rules in order to make sure that ModSecurity will block as many risks as possible, hence boosting the security of your web apps as much as possible.
ModSecurity in Dedicated Web Hosting
ModSecurity comes with all dedicated servers which are set up with our Hepsia CP and you will not have to do anything specific on your end to employ it since it's activated by default every time you add a new domain or subdomain on your server. If it interferes with any of your apps, you shall be able to stop it via the respective area of Hepsia, or you may leave it in passive mode, so it will recognize attacks and shall still keep a log for them, but will not prevent them. You'll be able to analyze the logs later to find out what you can do to increase the safety of your sites as you shall find information such as where an intrusion attempt came from, what site was attacked and based on what rule ModSecurity reacted, etc. The rules which we use are commercial, thus they're constantly updated by a security company, but to be on the safe side, our admins also add custom rules once in a while as to respond to any new threats they have discovered.