ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's employed to prevent attacks toward script-driven sites through the use of security rules that contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and protect even websites that aren't updated on a regular basis. For instance, multiple failed login attempts to a script administrative area or attempts to execute a certain file with the purpose to get access to the script will trigger certain rules, so ModSecurity will stop these activities the minute it discovers them. The firewall is very efficient as it monitors the whole HTTP traffic to a website in real time without slowing it down, so it can easily prevent an attack before any damage is done. It furthermore keeps an incredibly thorough log of all attack attempts that includes more info than typical Apache logs, so you could later examine the data and take extra measures to enhance the security of your websites if needed.
ModSecurity in Website Hosting
We provide ModSecurity with all website hosting solutions, so your Internet apps shall be shielded from malicious attacks. The firewall is activated as standard for all domains and subdomains, but in case you'd like, you'll be able to stop it via the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you will find inside Hepsia are incredibly detailed and feature data about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, etc. We employ a set of commercial rules which are constantly updated, but sometimes our admins add custom rules as well so as to better protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Servers
We have included ModSecurity by default within all semi-dedicated server plans, so your web applications shall be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts shall allow you to enable or disable the firewall for any website with a mouse click. You shall also be able to activate a passive detection mode through which ModSecurity will keep a log of potential attacks without really preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack initiated, where it originated from, etc. The list of rules we employ is regularly updated in order to match any new risks that could appear on the Internet and it comes with both commercial rules that we get from a security business and custom-written ones which our admins include in the event that they find a threat that is not present inside the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is provided with all Hepsia-based VPS servers we offer and it shall be switched on automatically for every new domain or subdomain you include on the web server. In this way, any web application which you install will be protected right from the start without doing anything by hand on your end. The firewall could be managed through the section of the Control Panel that bears the same name. This is the area whereyou'll be able to turn off ModSecurity or activate its passive mode, so it will not take any action against threats, but will still maintain a comprehensive log. The recorded info is available in the same area as well and you will be able to see what IPs any attacks came from so that you can block them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules that we use on our servers are a combination between commercial ones that we get from a security company and custom ones which are included by our admins to improve the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers
When you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web programs shall be protected right from the start since ModSecurity is available with all Hepsia-based packages. You shall be able to manage the firewall without difficulty and if required, you will be able to turn it off or activate its passive mode when it will only keep a log of what is occurring without taking any action to stop possible attacks. The logs that you'll find within the same section of the Control Panel are very detailed and contain information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This information will enable you to take measures and enhance the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins include when they recognize attacks which haven't yet been included within the commercial pack.