ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and when it detects an intrusion attempt, it blocks it. The firewall also keeps a more detailed log for the traffic than any web server does, so you shall manage to keep track of what's happening with your websites much better than if you rely simply on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it identifies if anyone is trying to log in to the administration area of a specific script multiple times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the software hinders the attempts instantly, then records comprehensive information about them inside its logs. ModSecurity is one of the best software firewalls out there and it can easily protect your web apps against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.
ModSecurity in Cloud Website Hosting
ModSecurity is provided with all cloud website hosting machines, so if you choose to host your sites with our business, they'll be protected against an array of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you'll have to do on your end. You shall be able to stop ModSecurity for any site if required, or to activate a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You will be able to view comprehensive logs using your Hepsia CP including the IP address where the attack originated from, what the attacker planned to do and how ModSecurity addressed the threat. As we take the protection of our customers' websites seriously, we employ a selection of commercial rules that we take from one of the leading firms that maintain this type of rules. Our admins also add custom rules to ensure that your websites will be resistant to as many risks as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server solutions that we offer come with ModSecurity and given that the firewall is turned on by default, any website you create under a domain or a subdomain will be protected right away. An individual section in the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it will enable you to start and stop the firewall for any website or switch on a detection mode. With the last option, ModSecurity shall not take any action, but it shall still recognize possible attacks and will keep all data in a log as if it were completely active. The logs can be found within the exact same section of the CP and they offer specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules that we use on our web servers are a mix of commercial ones from a security company and custom ones developed by our system administrators. For that reason, we provide increased security for your web programs as we can protect them from attacks before security corporations release updates for brand new threats.
ModSecurity in VPS Servers
ModSecurity is included with all Hepsia-based VPS servers we offer and it'll be activated automatically for any new domain or subdomain that you add on the hosting server. In this way, any web application that you install will be protected immediately without doing anything personally on your end. The firewall may be handled via the section of the Control Panel which has the same name. This is the place in whichyou could turn off ModSecurity or activate its passive mode, so it will not take any action towards threats, but shall still maintain a detailed log. The recorded data is available inside the same section as well and you will be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we employ on our servers are a blend between commercial ones that we obtain from a security firm and custom ones which are included by our administrators to enhance the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers
ModSecurity is included with all dedicated servers that are integrated with our Hepsia CP and you won't need to do anything specific on your end to employ it as it's activated by default each time you add a new domain or subdomain on your server. In the event that it disrupts any of your programs, you'll be able to stop it via the respective area of Hepsia, or you could leave it working in passive mode, so it will identify attacks and shall still keep a log for them, but shall not stop them. You'll be able to look at the logs later to learn what you can do to increase the protection of your sites as you'll find information such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, etc. The rules we use are commercial, thus they're regularly updated by a security firm, but to be on the safe side, our admins also add custom rules from time to time as to deal with any new threats they have found.