ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall furthermore maintains a more detailed log for the traffic than any server does, so you'll be able to keep an eye on what is happening with your sites better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it detects if somebody is trying to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a specific command. In these instances these attempts trigger the corresponding rules and the firewall program hinders the attempts immediately, then records in-depth info about them inside its logs. ModSecurity is amongst the best software firewalls on the market and it can easily protect your web apps against many threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Shared Web Hosting
ModSecurity is supplied with all shared web hosting servers, so if you choose to host your websites with our organization, they'll be resistant to a wide range of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you will need to do on your end. You'll be able to stop ModSecurity for any website if required, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You shall be able to view specific logs from your Hepsia Control Panel including the IP where the attack came from, what the attacker wished to do and how ModSecurity handled the threat. As we take the protection of our customers' Internet sites very seriously, we employ a collection of commercial rules which we take from one of the best companies that maintain such rules. Our administrators also include custom rules to make sure that your websites will be protected against as many risks as possible.
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our semi-dedicated server packages and if you decide to host your websites with our company, there won't be anything special you will have to do since the firewall is switched on by default for all domains and subdomains you add through your hosting Control Panel. If required, you could disable ModSecurity for a particular Internet site or switch on the so-called detection mode in which case the firewall will still operate and record data, but will not do anything to prevent potential attacks on your Internet sites. In depth logs will be accessible inside your Control Panel and you will be able to see what sort of attacks happened, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks came from, and so on. We use 2 kinds of rules on our servers - commercial ones from a company that operates in the field of web security, and custom ones which our admins sometimes include to respond to newly found threats promptly.
ModSecurity in VPS Servers
Safety is essential to us, so we set up ModSecurity on all VPS servers which are made available with the Hepsia CP as a standard. The firewall could be managed through a dedicated section in Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you'll not have to do anything personally. You will also be able to deactivate it or activate the so-called detection mode, so it shall keep a log of possible attacks which you can later analyze, but shall not stop them. The logs in both passive and active modes offer details regarding the form of the attack and how it was prevented, what IP address it originated from and other valuable information which might help you to tighten the security of your sites by updating them or blocking IPs, for example. Beyond the commercial rules we get for ModSecurity from a third-party security company, we also use our own rules because from time to time we find specific attacks which aren't yet present in the commercial package. This way, we could increase the security of your Virtual private server in a timely manner rather than waiting for a certified update.
ModSecurity in Dedicated Servers
If you decide to host your websites on a dedicated server with the Hepsia Control Panel, your web apps will be secured right from the start as ModSecurity is available with all Hepsia-based packages. You shall be able to manage the firewall easily and if needed, you shall be able to turn it off or activate its passive mode when it will only maintain a log of what is happening without taking any action to stop possible attacks. The logs that you can find inside the very same section of the Control Panel are really detailed and feature information about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, and so on. This data will enable you to take measures and improve the protection of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our administrators add when they recognize attacks that haven't yet been included inside the commercial pack.