ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and in case it detects an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the website visitors than any web server does, so you'll manage to monitor what is happening with your websites much better than if you rely simply on conventional logs. ModSecurity works with security rules based on which it stops attacks. For instance, it detects if somebody is trying to log in to the administration area of a specific script a number of times or if a request is sent to execute a file with a certain command. In such cases these attempts set off the corresponding rules and the firewall blocks the attempts right away, then records in-depth info about them in its logs. ModSecurity is one of the most effective software firewalls available and it could easily protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Hosting
ModSecurity comes by default with all hosting solutions that we provide and it will be turned on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and disable it with just a mouse click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to stop them. The log for each of your Internet sites will include in-depth info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules which we use are constantly updated and incorporate both commercial ones which we get from a third-party security firm and custom ones that our system admins add in the event that they detect a new type of attacks. In this way, the sites that you host here will be way more protected without any action expected on your end.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server solutions that we offer come with ModSecurity and given that the firewall is enabled by default, any website you create under a domain or a subdomain will be protected immediately. An individual section inside the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to stop and start the firewall for any Internet site or activate a detection mode. With the last mentioned, ModSecurity shall not take any action, but it'll still detect possible attacks and shall keep all data in a log as if it were fully active. The logs could be found within the very same section of the Control Panel and they include info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so forth. The security rules that we employ on our servers are a mix between commercial ones from a security company and custom ones developed by our system admins. Consequently, we offer greater security for your web applications as we can defend them from attacks before security firms release updates for brand new threats.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting Control Panel, so your web apps shall be protected from the second your server is in a position. The firewall is switched on by default for any domain or subdomain on the VPS, but if needed, you can disable it with a click of your mouse from the corresponding section of Hepsia. You can also set it to operate in detection mode, so it shall keep a comprehensive log of any possible attacks without taking any action to stop them. The logs can be found inside the very same section and provide details about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For best security, we use not just commercial rules from a company working in the field of web security, but also custom ones our administrators include personally in order to react to new risks which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
All our dedicated servers that are installed with the Hepsia hosting CP include ModSecurity, so any application which you upload or install will be protected from the very beginning and you won't have to stress about common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records information about intrusions, but doesn't take actions to stop them. What you'll find in the logs shall help you to secure your Internet sites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, etc. With this information, you could see whether a website needs an update, if you ought to block IPs from accessing your hosting server, and so on. In addition to the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones as well when they come across a new threat that's not yet included in the commercial bundle.