ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is used to prevent attacks toward script-driven websites by employing security rules that contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and shield even Internet sites that aren't updated often. For example, numerous unsuccessful login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script will trigger certain rules, so ModSecurity will block these activities the minute it identifies them. The firewall is extremely efficient because it screens the entire HTTP traffic to a website in real time without slowing it down, so it could prevent an attack before any harm is done. It additionally maintains a very comprehensive log of all attack attempts that includes more information than traditional Apache logs, so you could later analyze the data and take additional measures to boost the security of your Internet sites if required.
ModSecurity in Hosting
We provide ModSecurity with all hosting solutions, so your Internet applications will be shielded from harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you would like, you will be able to stop it using the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall find in Hepsia are quite detailed and offer information about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, and so on. We use a range of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to better protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
We have included ModSecurity by default within all semi-dedicated hosting products, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to enable or turn off the firewall for any website with a click. You will also be able to turn on a passive detection mode in which ModSecurity shall maintain a log of potential attacks without really stopping them. The detailed logs include the nature of the attack and what ModSecurity response this attack initiated, where it came from, etcetera. The list of rules that we employ is frequently updated in order to match any new threats which could appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones that our administrators include if they discover a threat that is not present inside the commercial list yet.
ModSecurity in VPS Web Hosting
All virtual private servers that are provided with the Hepsia Control Panel feature ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the machine, so there shall not be anything special which you'll need to do to protect your websites. It shall take you only a mouse click to stop ModSecurity if necessary or to switch on its passive mode so that it records what goes on without taking any actions to stop intrusions. You will be able to look at the logs created in active or passive mode through the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall employed to tackle it, and so on. We use a mix of commercial and custom rules in order to make sure that ModSecurity shall prevent as many threats as possible, consequently enhancing the protection of your web apps as much as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers which are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it because it's turned on by default whenever you add a new domain or subdomain on your server. In case it disrupts any of your applications, you will be able to stop it through the respective section of Hepsia, or you can leave it working in passive mode, so it'll detect attacks and will still maintain a log for them, but shall not stop them. You may look at the logs later to learn what you can do to boost the protection of your Internet sites since you will find info such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, etc. The rules which we employ are commercial, hence they're regularly updated by a security company, but to be on the safe side, our admins also include custom rules from time to time as to deal with any new threats they have identified.