ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its functionality and if it identifies an intrusion attempt, it prevents it. The firewall also keeps a more detailed log for the traffic than any web server does, so you shall be able to monitor what is happening with your sites a lot better than if you rely simply on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it recognizes if anyone is trying to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a particular command. In such instances these attempts trigger the corresponding rules and the firewall blocks the attempts in real time, after that records in-depth info about them inside its logs. ModSecurity is one of the most effective software firewalls out there and it could easily protect your web applications against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
ModSecurity in Hosting
We offer ModSecurity with all hosting plans, so your Internet applications will be shielded from malicious attacks. The firewall is activated by default for all domains and subdomains, but in case you would like, you shall be able to stop it via the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you'll find inside Hepsia are incredibly detailed and feature data about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, etc. We use a range of commercial rules which are frequently updated, but sometimes our administrators add custom rules as well in order to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
Any web app which you install within your new semi-dedicated hosting account will be protected by ModSecurity because the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain which you include or create through your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated section within Hepsia where not simply could you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall shall not block anything, but it shall still keep an archive of possible attacks. This normally requires just a click and you shall be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, etc. The firewall uses two groups of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one that our administrators update personally as to respond to recently discovered threats as quickly as possible.
ModSecurity in VPS Web Hosting
Protection is very important to us, so we install ModSecurity on all virtual private servers which are made available with the Hepsia Control Panel by default. The firewall could be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or generate a subdomain, so you'll not need to do anything personally. You will also be able to disable it or turn on the so-called detection mode, so it'll keep a log of potential attacks which you can later examine, but won't stop them. The logs in both passive and active modes include details regarding the kind of the attack and how it was stopped, what IP address it originated from and other valuable data that could help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. Besides the commercial rules we get for ModSecurity from a third-party security enterprise, we also employ our own rules since once in a while we discover specific attacks that are not yet present within the commercial group. That way, we could enhance the protection of your VPS immediately instead of awaiting an official update.
ModSecurity in Dedicated Servers Hosting
ModSecurity comes with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it because it is turned on by default each time you add a new domain or subdomain on your server. In the event that it disrupts any of your applications, you'll be able to stop it via the respective section of Hepsia, or you could leave it working in passive mode, so it'll detect attacks and will still maintain a log for them, but won't block them. You can analyze the logs later to learn what you can do to increase the protection of your Internet sites as you shall find info such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity reacted, etc. The rules which we employ are commercial, therefore they are frequently updated by a security company, but to be on the safe side, our administrators also include custom rules from time to time as to react to any new threats they have identified.