ModSecurity is an efficient firewall for Apache web servers which is used to prevent attacks towards web applications. It tracks the HTTP traffic to a given Internet site in real time and blocks any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do this - for instance, trying to log in to a script admin area unsuccessfully a few times activates one rule, sending a request to execute a particular file that could result in accessing the website triggers a different rule, etcetera. ModSecurity is amongst the best firewalls on the market and it will protect even scripts which are not updated regularly as it can prevent attackers from using known exploits and security holes. Quite comprehensive data about every intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the regular logs provided by the Apache server, so you could later examine them and determine whether you need to take additional measures so as to enhance the security of your script-driven Internet sites.
ModSecurity in Cloud Hosting
ModSecurity comes by default with all cloud hosting
solutions which we provide and it'll be switched on automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and deactivate it with just a click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to prevent them. The log for each of your websites will contain in-depth information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are constantly updated and comprise of both commercial ones that we get from a third-party security company and custom ones our system administrators include in case that they detect a new type of attacks. In this way, the Internet sites which you host here shall be a lot more secure with no action expected on your end.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server
plans which we offer feature ModSecurity and since the firewall is enabled by default, any Internet site you create under a domain or a subdomain will be secured immediately. A separate section within the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall allow you to stop and start the firewall for any website or activate a detection mode. With the latter, ModSecurity shall not take any action, but it will still identify possible attacks and will keep all info in a log as if it were fully active. The logs could be found inside the same section of the Control Panel and they include info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so forth. The security rules we use on our web servers are a mix of commercial ones from a security firm and custom ones developed by our system admins. For that reason, we provide higher security for your web apps as we can protect them from attacks before security firms release updates for new threats.
ModSecurity in VPS Servers
ModSecurity comes with all Hepsia-based VPS servers
that we offer and it will be switched on automatically for any new domain or subdomain which you include on the machine. In this way, any web application you install shall be secured immediately without doing anything personally on your end. The firewall may be managed from the section of the Control Panel that has the same name. This is the location in whichyou could disable ModSecurity or let its passive mode, so it won't take any action against threats, but shall still keep a thorough log. The recorded info is available in the same area as well and you shall be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules we employ on our servers are a combination between commercial ones which we get from a security firm and custom ones which are added by our staff to maximize the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers
All of our dedicated servers
which are set up with the Hepsia hosting CP come with ModSecurity, so any program that you upload or install shall be protected from the very beginning and you won't have to worry about common attacks or vulnerabilities. A separate section within Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you'll see in the logs can help you to secure your Internet sites better - the IP address an attack came from, what site was attacked and exactly how, what ModSecurity rule was triggered, etc. With this information, you can see if a site needs an update, if you should block IPs from accessing your hosting server, etc. In addition to the third-party commercial security rules for ModSecurity we use, our admins add custom ones too every time they discover a new threat which is not yet a part of the commercial bundle.