ModSecurity is an efficient firewall for Apache web servers which is used to stop attacks toward web applications. It monitors the HTTP traffic to a certain site in real time and blocks any intrusion attempts as soon as it detects them. The firewall relies on a set of rules to do that - as an example, trying to log in to a script admin area unsuccessfully a few times sets off one rule, sending a request to execute a certain file that could result in gaining access to the site triggers another rule, etcetera. ModSecurity is among the best firewalls out there and it'll secure even scripts which are not updated frequently since it can prevent attackers from employing known exploits and security holes. Very detailed info about every intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the standard logs created by the Apache server, so you can later analyze them and decide if you need to take extra measures in order to improve the security of your script-driven websites.
ModSecurity in Web Hosting
We provide ModSecurity with all web hosting packages, so your Internet apps will be resistant to destructive attacks. The firewall is switched on as standard for all domains and subdomains, but in case you'd like, you will be able to stop it through the respective section of your Hepsia CP. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you'll discover inside Hepsia are very detailed and include data about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, etc. We employ a range of commercial rules which are often updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
Any web app you install within your new semi-dedicated hosting account will be protected by ModSecurity because the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain which you include or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity via a dedicated section inside Hepsia where not simply can you activate or deactivate it completely, but you could also activate a passive mode, so the firewall won't block anything, but it'll still keep a record of possible attacks. This takes only a click and you shall be able to see the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was taken care of, etcetera. The firewall employs 2 sets of rules on our web servers - a commercial one which we get from a third-party web security firm and a custom one that our admins update manually as to respond to recently discovered risks as soon as possible.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers that are set up with the Hepsia hosting Control Panel, so your web programs will be protected from the second your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if required, you'll be able to disable it with a click through the corresponding section of Hepsia. You can also set it to operate in detection mode, so it will keep an extensive log of any potential attacks without taking any action to prevent them. The logs can be found in the exact same section and provide information about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For optimum security, we employ not simply commercial rules from a firm operating in the field of web security, but also custom ones our admins include personally in order to react to new threats which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers Hosting
When you decide to host your sites on a dedicated server with the Hepsia CP, your web programs will be protected right from the start because ModSecurity is provided with all Hepsia-based solutions. You will be able to manage the firewall effortlessly and if required, you shall be able to turn it off or activate its passive mode when it'll only keep a log of what's taking place without taking any action to stop possible attacks. The logs that you'll find in the exact same section of the Control Panel are really detailed and feature data about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so on. This info will permit you to take measures and increase the security of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our staff include when they identify attacks which haven't yet been included within the commercial pack.