ModSecurity is a powerful firewall for Apache web servers that's used to stop attacks towards web apps. It tracks the HTTP traffic to a given website in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to do that - as an illustration, trying to log in to a script administrator area unsuccessfully many times triggers one rule, sending a request to execute a specific file that could result in accessing the Internet site triggers another rule, etc. ModSecurity is amongst the best firewalls on the market and it will secure even scripts which are not updated frequently since it can prevent attackers from using known exploits and security holes. Very thorough info about every single intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the conventional logs provided by the Apache server, so you may later analyze them and decide whether you need to take extra measures in order to enhance the security of your script-driven websites.
ModSecurity in Shared Website Hosting
We provide ModSecurity with all shared website hosting
solutions, so your Internet apps shall be protected against destructive attacks. The firewall is activated as standard for all domains and subdomains, but if you would like, you shall be able to stop it using the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you will discover inside Hepsia are quite detailed and include info about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, etcetera. We use a set of commercial rules that are constantly updated, but sometimes our admins add custom rules as well in order to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
Any web program which you install within your new semi-dedicated hosting
account shall be protected by ModSecurity since the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain which you include or create using your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated section in Hepsia where not simply could you activate or deactivate it fully, but you may also switch on a passive mode, so the firewall won't block anything, but it shall still keep a record of possible attacks. This takes simply a click and you shall be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, and so forth. The firewall employs 2 groups of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one that our admins update personally in order to respond to newly discovered risks as soon as possible.
ModSecurity in VPS Web Hosting
ModSecurity is included with all Hepsia-based virtual private servers
that we offer and it'll be activated automatically for every new domain or subdomain which you include on the server. This way, any web application which you install shall be protected right from the start without doing anything manually on your end. The firewall could be handled through the section of the CP which bears the same name. This is the area in whichyou'll be able to turn off ModSecurity or let its passive mode, so it won't take any action toward threats, but will still maintain a comprehensive log. The recorded information is available inside the same area as well and you shall be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules which we use on our servers are a blend between commercial ones we obtain from a security organization and custom ones which are included by our admins to improve the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers Hosting
If you choose to host your sites on a dedicated server
with the Hepsia Control Panel, your web applications shall be secured right away since ModSecurity is available with all Hepsia-based solutions. You will be able to regulate the firewall with ease and if needed, you will be able to turn it off or switch on its passive mode when it shall only keep a log of what is going on without taking any action to prevent possible attacks. The logs which you will find within the exact same section of the CP are extremely detailed and contain information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so on. This information will permit you to take measures and boost the protection of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our admins include whenever they identify attacks which have not yet been included in the commercial pack.