ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks toward web applications. It monitors the HTTP traffic to a particular site in real time and prevents any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to accomplish that - for instance, trying to log in to a script administrator area unsuccessfully several times sets off one rule, sending a request to execute a specific file which could result in accessing the site triggers a different rule, and so on. ModSecurity is one of the best firewalls available on the market and it will preserve even scripts which aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Very comprehensive info about each intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the conventional logs generated by the Apache server, so you could later analyze them and determine if you need to take more measures in order to improve the security of your script-driven sites.
ModSecurity in Shared Web Hosting
ModSecurity is available with each and every shared web hosting
package that we provide and it is turned on by default for any domain or subdomain which you include via your Hepsia Control Panel. In case it interferes with any of your programs or you'd like to disable it for some reason, you'll be able to do this through the ModSecurity section of Hepsia with only a mouse click. You can also enable a passive mode, so the firewall will recognize potential attacks and maintain a log, but will not take any action. You could see extensive logs in the exact same section, including the IP where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so on. For optimum protection of our customers we use a collection of commercial firewall rules mixed with custom ones which are provided by our system administrators.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server
packages which we offer feature ModSecurity and because the firewall is turned on by default, any Internet site that you create under a domain or a subdomain will be protected immediately. An individual section in the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it will allow you to stop and start the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity will not take any action, but it will still detect possible attacks and will keep all information within a log as if it were completely active. The logs could be found in the same section of the Control Panel and they feature information about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, etcetera. The security rules that we use on our web servers are a mix between commercial ones from a security firm and custom ones created by our system administrators. As a result, we offer higher security for your web applications as we can protect them from attacks before security firms release updates for brand new threats.
ModSecurity in VPS Servers
Security is vital to us, so we install ModSecurity on all VPS servers
which are provided with the Hepsia Control Panel as a standard. The firewall can be managed through a dedicated section within Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you won't have to do anything manually. You will also be able to deactivate it or switch on the so-called detection mode, so it shall keep a log of potential attacks that you can later examine, but shall not block them. The logs in both passive and active modes include information about the form of the attack and how it was stopped, what IP it originated from and other useful data which might help you to tighten the security of your sites by updating them or blocking IPs, for example. On top of the commercial rules which we get for ModSecurity from a third-party security enterprise, we also implement our own rules because from time to time we identify specific attacks that aren't yet present inside the commercial group. That way, we can increase the security of your VPS instantly as opposed to awaiting an official update.
ModSecurity in Dedicated Servers
When you decide to host your websites on a dedicated server
with the Hepsia CP, your web applications shall be protected immediately since ModSecurity is provided with all Hepsia-based plans. You'll be able to control the firewall without difficulty and if needed, you shall be able to turn it off or activate its passive mode when it'll only maintain a log of what's taking place without taking any action to prevent possible attacks. The logs that you'll find in the exact same section of the CP are extremely detailed and include info about the attacker IP address, what website and file were attacked and in what way, what rule the firewall employed to stop the intrusion, and so on. This data will allow you to take measures and boost the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our staff add every time they identify attacks that have not yet been included inside the commercial pack.