ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and when it discovers an intrusion attempt, it prevents it. The firewall also maintains a more comprehensive log for the site visitors than any server does, so you'll manage to keep track of what is happening with your Internet sites better than if you rely simply on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it detects whether anyone is attempting to log in to the admin area of a particular script multiple times or if a request is sent to execute a file with a particular command. In these situations these attempts set off the corresponding rules and the firewall software blocks the attempts instantly, after that records in-depth information about them within its logs. ModSecurity is one of the very best software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins often.
ModSecurity in Cloud Hosting
ModSecurity is offered with each cloud hosting solution which we offer and it is switched on by default for every domain or subdomain that you add through your Hepsia Control Panel. In case it interferes with any of your applications or you would like to disable it for whatever reason, you will be able to achieve that through the ModSecurity section of Hepsia with only a mouse click. You may also activate a passive mode, so the firewall will discover possible attacks and maintain a log, but shall not take any action. You could see detailed logs in the same section, including the IP where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, etc. For optimum protection of our clients we use a group of commercial firewall rules combined with custom ones which are included by our system administrators.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting solutions and if you decide to host your Internet sites with us, there won't be anything special you'll have to do as the firewall is activated by default for all domains and subdomains which you include through your hosting CP. If required, you could disable ModSecurity for a given site or enable the so-called detection mode in which case the firewall shall still operate and record information, but won't do anything to prevent potential attacks on your Internet sites. Detailed logs shall be available inside your Control Panel and you shall be able to see which kind of attacks occurred, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks originated from, etc. We use two sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and customized ones that our administrators occasionally include to respond to newly identified threats promptly.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers which are provided with the Hepsia hosting Control Panel, so your web applications will be protected from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if required, you could deactivate it with a mouse click through the corresponding section of Hepsia. You may also set it to function in detection mode, so it'll maintain a comprehensive log of any possible attacks without taking any action to stop them. The logs are available within the same section and include info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For optimum security, we use not just commercial rules from a firm operating in the field of web security, but also custom ones that our administrators include personally in order to respond to new threats that are still not addressed in the commercial rules.
ModSecurity in Dedicated Web Hosting
ModSecurity is included with all dedicated servers which are integrated with our Hepsia CP and you'll not need to do anything specific on your end to employ it since it's switched on by default each time you add a new domain or subdomain on your hosting server. If it interferes with any of your programs, you'll be able to stop it through the respective area of Hepsia, or you could leave it working in passive mode, so it will identify attacks and shall still maintain a log for them, but shall not block them. You may analyze the logs later to determine what you can do to boost the protection of your websites since you'll find info such as where an intrusion attempt originated from, what website was attacked and in accordance with what rule ModSecurity responded, and so on. The rules that we employ are commercial, therefore they are frequently updated by a security provider, but to be on the safe side, our administrators also include custom rules from time to time as to respond to any new threats they have identified.