ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's used to stop attacks towards script-driven Internet sites by employing security rules which contain specific expressions. This way, the firewall can stop hacking and spamming attempts and protect even sites that are not updated frequently. For instance, a number of unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will stop these activities the instant it detects them. The firewall is incredibly efficient as it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it could stop an attack before any harm is done. It additionally keeps a very thorough log of all attack attempts which contains more info than conventional Apache logs, so you can later check out the data and take extra measures to increase the security of your sites if required.
ModSecurity in Website Hosting
ModSecurity is available on all website hosting web servers, so if you opt to host your websites with our business, they'll be resistant to a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you'll have to do on your end. You shall be able to stop ModSecurity for any site if necessary, or to switch on a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You shall be able to view comprehensive logs from your Hepsia CP including the IP where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the safety of our customers' sites seriously, we employ a group of commercial rules which we get from one of the leading companies which maintain this type of rules. Our administrators also add custom rules to make sure that your websites shall be resistant to as many risks as possible.
ModSecurity in Semi-dedicated Servers
Any web program which you install within your new semi-dedicated server account shall be protected by ModSecurity since the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain that you add or create using your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated area inside Hepsia where not simply could you activate or deactivate it completely, but you may also activate a passive mode, so the firewall won't block anything, but it will still maintain an archive of potential attacks. This takes simply a mouse click and you'll be able to see the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, etc. The firewall uses two groups of rules on our servers - a commercial one that we get from a third-party web security company and a custom one that our admins update personally as to respond to newly discovered threats as quickly as possible.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are provided with the Hepsia hosting CP, so your web apps shall be protected from the instant your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if required, you could disable it with a click of your mouse through the corresponding section of Hepsia. You could also set it to work in detection mode, so it will keep an extensive log of any possible attacks without taking any action to prevent them. The logs are available within the very same section and provide information about the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For best security, we use not simply commercial rules from a firm operating in the field of web security, but also custom ones that our administrators add personally in order to react to new threats which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
If you choose to host your websites on a dedicated server with the Hepsia CP, your web applications will be secured right away because ModSecurity is supplied with all Hepsia-based packages. You will be able to control the firewall easily and if required, you will be able to turn it off or activate its passive mode when it will only keep a log of what is happening without taking any action to prevent potential attacks. The logs that you'll find within the same section of the Control Panel are quite detailed and contain information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, etcetera. This data will allow you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones that our staff include whenever they recognize attacks which haven't yet been included inside the commercial pack.